Here’s the scenario…please help.
We have an internal Exchange server (INT) that has an x.400 connector to an external Exchange (EXT)in a DMZ for the purpose of securing mail with a certain client. This EXT server points our client’s external Exchange server (CLT). We are using SSL & TLS Encryption to secure the mail between external Exchange servers CLT and EXT (or this is how I think it’s supposed to work).
The problem is when we send to the client, the message reaches them fine, butwhen the try to reply or send back to us, they get an NDR saying “554 Unable to initialize Security Subsystem .” The same message is seen when we telnet port 25 on our EXT server as well. On our EXT server, TLS is enabled and a certificate is installed through IIS 4.0. We believe at this point for it to be a certificate problem. We recently reinstalled the certificate via NT 4.0 Keyring in IIS because it had expired, but it hasn’t worked. We also changed IP addresses because we switched ISPs recently. I believe our addressing scheme is correct however. Is it the certificate installation? Have we not installed it properly?
We had an outside consultant setup our secure email, but for various legal reasons, he can’t help us anymore, didn’t leave documentation and we are stuck….help.