MCSF
asked on
TLS encryption between domains on Exchange 2010
I need to set up TLS encryption between my domain and another organization's domain. My environment consists of an Edge Transport server and Hub/CAS/Mailbox server. What connectors do I need and where do I place a certificate? Thanks!
you place the cert on the last out going and first incoming emails servers (or anti spam appliance). all you do is install the cert, and turn on TLS within the last smtp server. we use ask for tls on all connections but if they dont answer intls drop to normal smtp conversation.
ASKER
how do you initiate a self-signed cert and how do you install it on the edge transport role?
so you want to host your own ssl cert and the key.
http://www.yatblog.com/2007/02/27/how-to-create-a-ssl-certificate/
https://www.experts-exchange.com/questions/23347750/Can-I-create-a-local-SSL-cert-from-one-of-my-own-server-servers-for-OWA.html
http://www.yatblog.com/2007/02/27/how-to-create-a-ssl-certificate/
https://www.experts-exchange.com/questions/23347750/Can-I-create-a-local-SSL-cert-from-one-of-my-own-server-servers-for-OWA.html
ASKER
The first link talks about open ssl and the second link talks about SSL for OWA. I do not want to use open ssl and I already have a 3rd party cert for OWA. How do I create a certificate through my own CA and use it on the edge transport server?
why do you want to host your own cert. you can buy one for about $100-150. digicert allows multiple servers for one cert.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I hear you. we also setup TLS for a request from a customer. initially it was only setup for one company but now we have had 4 other customers request TLS also.
once you install a TLS/SSL cert it will work for any and all smtp systems using TLS.
once you install a TLS/SSL cert it will work for any and all smtp systems using TLS.
ASKER
Did not get any resolution. Currently not using TLS.