Securing email communications through imap, pop, smtp, and OWA

I have been tasked by a client to secure up their email communications. They are running Exchange Server 2003 on Windows Server 2003. They have users access email via OWA, imap, pop, and smtp. I'm looking for instructions on how to create an SSL certificate using Server 2003 Certificate Authority and how to deply to the Exchange server. I'm also asking for any input on how to secure communication for imap, pop, and smtp. Any help would be greatly appreciated.
eschipmanAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
eschipmanAuthor Commented:
Is using certificates the best way to secure IMAP, POP, and SMTP communication as well?
0
tenaj-207Commented:
A certificate will be a the biggest step in the right direction.  Also I would suggest implementing a secure password policy that forces users to change there passwords on a regular schedule.

As for installing the certificate screen shots are great but, I love netometer's video step by step walk through.  This is for a GoDaddy certificate, which is what I like to use.  But they also have other walk through's.

http://www.netometer.com/video/tutorials/godaddy-ssl-certificate/index.php

Would you also like information on how to lock down PDA/smartphones?

Good luck,
tenaj
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

eschipmanAuthor Commented:
Are there any other security measures I should take when securing IMAP, POP, and SMTP communications? Also can the certificate I create and use to secure OWA be used for IMAP, POP, and SMTP or do I need to create a seperate certificate for each?

Also It was my understanding that if you setup a certificate in the Exchange System Manager for IMAP, POP, and SMTP that it was just used for encrypting and signing emails. Am I incorrect about that?
0
eschipmanAuthor Commented:
One last question. In the instructions for setting up SSL both set it up on the Default Web Site. If I'm looking to secure OWA do I set it up on the Default web site or External Exchange?
0
tenaj-207Commented:
You set it up on the Default web site.  I'm not sure what you mean by the External Exchange?
0
abdulzisCommented:
You can use the same certificate for SMTP, IMAP, POP and OWA. However, digitally signing and encrypting emails at the client level (outlook) requires the use of personal certificates.
0
eschipmanAuthor Commented:
Thanks very much for the help I got the certificates installed tonight and they work great. one last question. After setting up the certificate on IMAP, POP, and SMTP if I set it to require the secure connection will I need to reconfigure users email on their computers to connect?
0
tenaj-207Commented:
If users are set to to not use an SSL connection then yes, you will need to reconfigure the computers to use SSL with inbound and outbound traffic.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Email Protocols

From novice to tech pro — start learning today.