Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 373
  • Last Modified:

I need to enable TLS

I need to enable TLS for incoming and outgoing emails. I have a front end server and back end server. Which server do i need to apply the certificate for on the SMTP virtual directory?
0
imagnl
Asked:
imagnl
  • 2
  • 2
  • 2
1 Solution
 
sstone55423Commented:
The MS Exchange team covered this well -- see this blog
http://msexchangeteam.com/archive/2006/10/04/429090.aspx
 
0
 
sstone55423Commented:

Here is the SMTP portion that you asked specifically about:
1) Click Start, point to Programs, point to Microsoft Exchange, and then click System Manager.
2) Expand Administrative Groups 1(if appropriate), expand AdministrativeGroup (if appropriate), expand Servers, expand ServerName, and then expand Protocols.
3) Right-click the Secure SMTP VS, and then click Properties.
4) Click the Access tab, and then click Certificate to set up new key certificates and to manage key certificates that are installed for the SMTP virtual server. See the appropriate article for more details on using certificates with Virtual Servers in Exchange Server:

0
 
chingmdCommented:
depending on the mail flow, it could be both.

If the front end server is the first place incoming external mail hits, and the last place outgoing external mail hits, then it's just the front end server.

If the front end server only works on the incoming external mail, and the backend server does the external SMTP connects outward, you'll need a cert on both of them.

0
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

 
imagnlAuthor Commented:
Well, i followed these instructions and did it on my back end but I dont see the TLS authentication in my headers. My assumption is I need to do it on my front end then.

Also, the certificate for the TLS, should it associate to the FQDN?
0
 
imagnlAuthor Commented:
Any more advice on this?
0
 
chingmdCommented:
Not from me.  I don't have an environment to refer to on this.

0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

  • 2
  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now