My SMTP notifications have stopped working a few weeks ago.
Turns out my SMTP provider, Mandrill, has renewed its certificate.
Back when I installed Veeam, the server was unable to check the CRL so I has to manually trust the certificate, which can easily be done when testing SMTP settings.
However, when the certificate changes, Veeam behaves weirdly: the job logs says "Sending e-mail report Details: The remote certificate is invalid according to the validation procedure." (which isn't unexpected). Testing the SMTP settings leads to the console stopping responding. Wireshark shows that it is connecting to the SMTP server on a loop, failing after enabling StartTLS.
I was able to find additional information inside Svc.VeeamBackup.log:
Code: Select all
[21.12.2023 10:08:13.927] <10> Info [CReportMailer] Sending e-mail notification, server 'SMTP Server 'smtp.mandrillapp.com', port '587', timeout '100000', use ssl 'True'', to '<redacted>'
[21.12.2023 10:08:14.103] <10> Error Certificate check failed, thumbprint mismatch.
[21.12.2023 10:08:14.105] <10> Error Saved thumbprint: 68F0363765C96017E1D67C676D802FD23804330F
[21.12.2023 10:08:14.107] <10> Error [ConfigService] Failed to send test mail message.
[21.12.2023 10:08:14.107] <10> Error The remote certificate is invalid according to the validation procedure. (System.Security.Authentication.AuthenticationException)To fix this issue:
- Stop Veeam Backup Service
- Open SQL Server Management Studio
- Connect to the SQL Server, open the VeeamBackup database
- Get your SMTP settings: #Edited by Mod: Please do not post SQL queries. They are only supported with the guidance of our support team.
- Copy the XML to a text editor, and remove the following path: CMailOptions.CertificateThumbprint
- Update your SMTP settings: #Edited by Mod: Please do not post SQL queries. They are only supported with the guidance of our support team.
- Start Veeam Backup Service
- Launch B&R Console and test your SMTP settings