RESOLUTION

For additional information about how to configure the Exchange 2000 server to allow SSL connections, click the article number below to view the article in the Microsoft Knowledge Base:

If the server is not supposed to be configured for SSL, you need to track down which clients are attempting to connect using SSL. You can determine which client is causing the error messages to be logged in two ways:

• Use a network traffic analyzer, such as Network Monitor, to capture traffic to the server. You should see connections being attempted to the Exchange 2000 server on either port 993 or port 995. You can then get the IP address of the computers that are attempting the connections.
• Use the Netstat.exe utility. Because the information store opens the SSL ports even when it is not configured to use SSL, you can run netstat -an at a command prompt on the Exchange 2000 server. Then look in the "Local Address" column for one or more lines that look similar to the following

  192.168.0.1:993
  
  -or-
  
  192.168.0.1:995

  where 192.168.0.1 is the IP address of your Exchange 2000 server.
  
  

  The corresponding IP address in the "Foreign Address" column is the IP address of a computer that has a connection to the Exchange 2000 server on port 993 or port 995 in the preceding example.

After you have the IP address of the remote computer, you can change the configuration of the e-mail client so that it does not attempt to connect to the Exchange 2000 server using SSL.