Symptoms
The Microsoft Exchange Service Host service (Microsoft.Exchange.ServiceHost.exe) on a computer that is running Microsoft Exchange Server 2013 crashes after you enable United States Federal Information Processing Standard (FIPS) compliant algorithms for encryption, hashing, and signing.
Additionally, the following event is logged in Application log:
Cause
This issue occurs because an incorrect cryptographic hash function is used.
Resolution
To resolve this issue, install Exchange Server 2013 Service Pack 1.
2926248 Exchange Server 2013 Service Pack 1
Workaround
To work around this issue, disable FIPS by using the Local Group Policy Editor. To do this, follow these steps:
-
Click Start, and then click Run.
Note For Windows Server 2012, type run on the Start screen, and then click Run in the results list. -
In the Open box, type gpedit.msc, and then click OK. The Local Group Policy Editor starts.
-
Expand Computer Configuration, expand Windows Settings, expand Security Settings, expand Local Policies, and then click Security Optons.
-
In the list of policies, double-click System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing, and then select Disabled.
-
Click OK.
-
Exit the Local Group Policy Editor.
You have to restart the computer to apply the changes.
Status
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.
