Office Live Communications Server stops listening on the TLS listening port (836410)


The information in this article applies to:

  • Microsoft Office Live Communications Server 2003

SYMPTOMS

You may experience all the following symptoms on your Microsoft Office Live Communications Server 2003 computer:
  • Instant messaging messages are queued on the computer, and they eventually time out.
  • The number of Transport Layer Security (TLS) connections to the server declines and eventually reaches zero.
  • Windows Messenger clients cannot connect to Live Communications Server by using a TLS connection.
  • If you restart Live Communications Server, the TLS listening port does not start. In this scenario, the following event IDs appear in the application log in Event Viewer:

    Event ID: 14347
    Event ID: 14336
    Event ID: 14352

CAUSE

This issue occurs if the certificate that the TLS listening port is configured to use is renewed while Live Communications Server is running. When the certificate is renewed, the access control list (ACL) entries are lost. These entries were configured on the certificate when you configured the TLS listening port. Without the ACL entries, Live Communications Service cannot access the certificate.

This issue may occur if your domain has a Group Policy object that is configured to automatically renew certificates.

RESOLUTION

To resolve this issue, reconfigure the TLS transport to use the new certificate. Additionally, verify other connections that are configured to use the same certificate.

Note These other connections may include Mutual TLS connections and routing connections,

To reconfigure the TLS transport to use the new certificate, follow these steps:
  1. Start Live Communications Server.
  2. Expand Servers, right-click the server where you want to reconfigure the TLS transport for the new certificate, and then click Properties.
  3. Click the Connections tab, click the connection that uses TLS or the connection that uses TLS Mutual transport, and then click Edit.
  4. Click Change Certificate, click the new certificate in the Select the certificate you want to use list, and then click OK.
  5. Click OK, and then click OK again.
  6. Stop and then restart Live Communications Server.
Modification Type:MajorLast Reviewed:2/23/2004
Keywords:kbprb KB836410 kbAudITPRO
©2004 Microsoft Corporation. All rights reserved.