Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

TLS encryption between domains on Exchange 2010

Posted on 2010-09-02
8
1,360 Views
Last Modified: 2012-05-10
I need to set up TLS encryption between my domain and another organization's domain. My environment consists of an Edge Transport server and Hub/CAS/Mailbox server. What connectors do I need and where do I place a certificate? Thanks!
0
Comment
Question by:MCSF
  • 4
  • 4
8 Comments
 
LVL 8

Expert Comment

by:pmorton23
ID: 33588177
you place the cert on the last out going and first incoming emails servers (or anti spam appliance).  all you do is install the cert, and turn on TLS within the last smtp server. we use ask for tls on all connections but if they dont answer intls drop to normal smtp conversation.
0
 

Author Comment

by:MCSF
ID: 33591430
how do you initiate a self-signed cert and how do you install it on the edge transport role?
0
 
LVL 8

Expert Comment

by:pmorton23
ID: 33592235
0
Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 

Author Comment

by:MCSF
ID: 33745663
The first link talks about open ssl and the second link talks about SSL for OWA. I do not want to use open ssl and I already have a 3rd party cert for OWA. How do I create a certificate through my own CA and use it on the edge transport server?
0
 
LVL 8

Expert Comment

by:pmorton23
ID: 33745699
why do you want to host your own cert. you can buy one for about $100-150. digicert allows multiple servers for one cert.
0
 

Accepted Solution

by:
MCSF earned 0 total points
ID: 33745836
This will be for TLS between one other domain and we are trying to accomodate this at their request. It will not be used for anything other than encrypting mail between us and them.
0
 
LVL 8

Expert Comment

by:pmorton23
ID: 33745927
I hear you. we also setup TLS for a request from a customer. initially it was only setup for one company but now we have had 4 other customers request TLS also.
once you install a TLS/SSL cert it will work for any and all smtp systems using TLS.
0
 

Author Closing Comment

by:MCSF
ID: 34224600
Did not get any resolution. Currently not using TLS.
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Marketers need statistics and metrics like everybody else needs oxygen. In this article we explain how to enable marketing campaign statistics for Microsoft Exchange mail.
Find out what you should include to make the best professional email signature for your organization.
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…
how to add IIS SMTP to handle application/Scanner relays into office 365.

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question