Microsoft Knowledge Base Email Alertz
All KB/RSS Links  |  Hot Kb!  |  New Kb!  |  Scott Cate  |  FAQ / KB  |  Web Hosting  |  Unsubscribe  

(836410) - Describes an issue where TLS connections decline and no new TLS connections can be made when the Live Communications Server computer has its certificate renewed.

Search KbAlertz

Advanced Search

Receive Microsoft Knowledge Base articles by E-Mail?

Every night we scan the Microsoft Knowledge Base. If technologies you're interested in are updated, we'll send you an e-mail. You only get one e-mail a day, and only when new articles are added.
Click here to create a
FREE account
Already have an account?
[Click here to Login]











Microsoft Knowledge Base Article

This article contents is Microsoft Copyrighted material.
©2005-©2007 Microsoft Corporation. All rights reserved. Terms of Use | Trademarks
Article ID: 836410 - Last Review: February 23, 2004 - Revision: 1.1

Office Live Communications Server stops listening on the TLS listening port

View products that this article applies to.

SYMPTOMS

You may experience all the following symptoms on your Microsoft Office Live Communications Server 2003 computer:
  • Instant messaging messages are queued on the computer, and they eventually time out.
  • The number of Transport Layer Security (TLS) connections to the server declines and eventually reaches zero.
  • Windows Messenger clients cannot connect to Live Communications Server by using a TLS connection.
  • If you restart Live Communications Server, the TLS listening port does not start. In this scenario, the following event IDs appear in the application log in Event Viewer:
    Event ID: 14347
    Event ID: 14336
    Event ID: 14352
Back to the top

CAUSE

This issue occurs if the certificate that the TLS listening port is configured to use is renewed while Live Communications Server is running. When the certificate is renewed, the access control list (ACL) entries are lost. These entries were configured on the certificate when you configured the TLS listening port. Without the ACL entries, Live Communications Service cannot access the certificate.

This issue may occur if your domain has a Group Policy object that is configured to automatically renew certificates.
Back to the top

RESOLUTION

To resolve this issue, reconfigure the TLS transport to use the new certificate. Additionally, verify other connections that are configured to use the same certificate.

Note These other connections may include Mutual TLS connections and routing connections,

To reconfigure the TLS transport to use the new certificate, follow these steps:
  1. Start Live Communications Server.
  2. Expand Servers, right-click the server where you want to reconfigure the TLS transport for the new certificate, and then click Properties.
  3. Click the Connections tab, click the connection that uses TLS or the connection that uses TLS Mutual transport, and then click Edit.
  4. Click Change Certificate, click the new certificate in the Select the certificate you want to use list, and then click OK.
  5. Click OK, and then click OK again.
  6. Stop and then restart Live Communications Server.
Back to the top
APPLIES TO
  • Microsoft Office Live Communications Server 2003
Back to the top
Keywords: 
kbprb KB836410
Back to the top
        

Community Feedback System

Very often, it takes hours to solve a problem. Very often, you've looked high and low, and have tried a lot of solutions. When you finally found it, chances are, it was because someone else helped you. Here's your chance to give back. Use our community feedback tool to let others know what worked for you and what didn't.

Please also understand that the community feedback system is not warranted to be correct, it's simply a system that we've built to let people try and help each other. If something in a feedback response doesn't make sense to you, or you're not comfortable making changes that the feedback talks about (like registry edits), please consult a professional.

Thank you for using kbAlertz.com Feedback System.

-- Scott Cate

Copyright © 2002-2007 KBALERTZ.COM.  All Rights Reserved. Terms / PrivacyDiscount ASP.NET Hosting