Solved

TLS encryption between domains on Exchange 2010

Posted on 2010-09-02
8
1,355 Views
Last Modified: 2012-05-10
I need to set up TLS encryption between my domain and another organization's domain. My environment consists of an Edge Transport server and Hub/CAS/Mailbox server. What connectors do I need and where do I place a certificate? Thanks!
0
Comment
Question by:MCSF
  • 4
  • 4
8 Comments
 
LVL 8

Expert Comment

by:pmorton23
ID: 33588177
you place the cert on the last out going and first incoming emails servers (or anti spam appliance).  all you do is install the cert, and turn on TLS within the last smtp server. we use ask for tls on all connections but if they dont answer intls drop to normal smtp conversation.
0
 

Author Comment

by:MCSF
ID: 33591430
how do you initiate a self-signed cert and how do you install it on the edge transport role?
0
 
LVL 8

Expert Comment

by:pmorton23
ID: 33592235
0
 

Author Comment

by:MCSF
ID: 33745663
The first link talks about open ssl and the second link talks about SSL for OWA. I do not want to use open ssl and I already have a 3rd party cert for OWA. How do I create a certificate through my own CA and use it on the edge transport server?
0
Why spend so long doing email signature updates?

Do you spend loads of your time carrying out email signature updates? Not very interesting are they? Don’t let signature updates get you down. Let Exclaimer Cloud - Signatures for Office 365 make managing email signatures a breeze.

 
LVL 8

Expert Comment

by:pmorton23
ID: 33745699
why do you want to host your own cert. you can buy one for about $100-150. digicert allows multiple servers for one cert.
0
 

Accepted Solution

by:
MCSF earned 0 total points
ID: 33745836
This will be for TLS between one other domain and we are trying to accomodate this at their request. It will not be used for anything other than encrypting mail between us and them.
0
 
LVL 8

Expert Comment

by:pmorton23
ID: 33745927
I hear you. we also setup TLS for a request from a customer. initially it was only setup for one company but now we have had 4 other customers request TLS also.
once you install a TLS/SSL cert it will work for any and all smtp systems using TLS.
0
 

Author Closing Comment

by:MCSF
ID: 34224600
Did not get any resolution. Currently not using TLS.
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Not sure what the best email signature size is? Are you worried about email signature image size? Follow this best practice guide.
Learn to move / copy / export exchange contacts to iPhone without using any software. Also see the issues in configuration of exchange with iPhone to migrate contacts.
In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …
This video discusses moving either the default database or any database to a new volume.

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now