?
Solved

TLS encryption between domains on Exchange 2010

Posted on 2010-09-02
8
Medium Priority
?
1,380 Views
Last Modified: 2012-05-10
I need to set up TLS encryption between my domain and another organization's domain. My environment consists of an Edge Transport server and Hub/CAS/Mailbox server. What connectors do I need and where do I place a certificate? Thanks!
0
Comment
Question by:MCSF
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
8 Comments
 
LVL 8

Expert Comment

by:pmorton23
ID: 33588177
you place the cert on the last out going and first incoming emails servers (or anti spam appliance).  all you do is install the cert, and turn on TLS within the last smtp server. we use ask for tls on all connections but if they dont answer intls drop to normal smtp conversation.
0
 

Author Comment

by:MCSF
ID: 33591430
how do you initiate a self-signed cert and how do you install it on the edge transport role?
0
Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 

Author Comment

by:MCSF
ID: 33745663
The first link talks about open ssl and the second link talks about SSL for OWA. I do not want to use open ssl and I already have a 3rd party cert for OWA. How do I create a certificate through my own CA and use it on the edge transport server?
0
 
LVL 8

Expert Comment

by:pmorton23
ID: 33745699
why do you want to host your own cert. you can buy one for about $100-150. digicert allows multiple servers for one cert.
0
 

Accepted Solution

by:
MCSF earned 0 total points
ID: 33745836
This will be for TLS between one other domain and we are trying to accomodate this at their request. It will not be used for anything other than encrypting mail between us and them.
0
 
LVL 8

Expert Comment

by:pmorton23
ID: 33745927
I hear you. we also setup TLS for a request from a customer. initially it was only setup for one company but now we have had 4 other customers request TLS also.
once you install a TLS/SSL cert it will work for any and all smtp systems using TLS.
0
 

Author Closing Comment

by:MCSF
ID: 34224600
Did not get any resolution. Currently not using TLS.
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Find out what you should include to make the best professional email signature for your organization.
How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…
Suggested Courses
Course of the Month8 days, 10 hours left to enroll

764 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question