Solved

New SMTP FE server that will host TLS certificate

Posted on 2006-11-30
5
894 Views
Last Modified: 2012-05-05
I have set up an new Frent End Exchange server that will be used to pass TLS traffic.

I already have the Ceritificate and Loaded it on the server.

The question I have is - Does the name of the certificate need to match the name of the server or does the certificate just need to match the MX record you have posted in DNS.

Currently when users try and send to the new server they get the message that the server does not except TLS traffic.
0
Comment
Question by:MFCrow
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 
LVL 16

Assisted Solution

by:poweruser32
poweruser32 earned 250 total points
ID: 18047181
the mx record you have in DNS
0
 
LVL 104

Accepted Solution

by:
Sembee earned 250 total points
ID: 18047759
It needs to match what the server is connecting to. So if the remote server thinks it is connecting to mail.domain.com then that is what the certificate needs to be.

Simon.
0
 

Author Comment

by:MFCrow
ID: 18048535
My mx record says to point to server@domain.com, the cert says the correct server but when they send messages they recieve the following message:

Final-Recipient: rfc822;xxxxxxx@incresearch.com
Diagnostic-Code: smtp; 5.7.4 Your mail administrator requires that all email addressed to this domain <incresearch.com> is delivered over a secure channel using SSL. The recipient server does not support extended SMTP options. Contact your mail administrator to verify that mail to this domain <incresearch.com> must be delivered over a secure channel.
Remote-MTA: dns; mx1.incresearch.com
Action: failed
Status: 5.0.0

What am I missing??????
0
 
LVL 104

Expert Comment

by:Sembee
ID: 18050170
A quick telnet to your server indicates that it wants to start a TLS session on port 25.
Have you tested this yourself? You can make Outlook Express use TLS and it should then be in the SMTP headers of the sent message that TLS was used.

Simon.
0
 

Author Comment

by:MFCrow
ID: 18053491
The actual cuase was the fire wall.  When a new pix is installed it automatically blocked port 25 until you told it not to.  

Thanks for the help.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

MS Outlook is a world-class email client application that is mainly used for e-communication globally.  In this article, we will discuss the basic idea about MS Outlook, its advanced features, and types of MS Outlook File formats.
In-place Upgrading Dirsync to Azure AD Connect
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question