Solved

Does anyone know how to setup TLS for a specific domain in Exchange 2010?

Posted on 2010-09-14
11
2,580 Views
Last Modified: 2012-06-27
I need to setup TLS for one client only.  I can't find any documentation on how to do this in Exchange 2010.  We use Postini for filtering as well- so I am lokking how to make it work for both.
0
Comment
Question by:funkyone60
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
  • 5
11 Comments
 
LVL 32

Accepted Solution

by:
endital1097 earned 500 total points
ID: 33675393
enabling a receive connector authentication with TLS allow for TLS communication
telnet into the recieve connector and send a ehlo and you will see the STARTTLS verb
0
 

Author Comment

by:funkyone60
ID: 33676823
this is done in exchange?  I need to send tls email to one client- this doesn't sound right to me
0
 
LVL 32

Expert Comment

by:endital1097
ID: 33676838
for outbound make sure your certificate has a subject name that matches the fqdn of your send connector

get-sendconnector | fl name,fqdn

get-exchangecertificate | where { $_.services.tostring().contains("SMTP") -eq $true }
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 

Author Comment

by:funkyone60
ID: 33676962
you are way past my understanding- where do I do this in exchange?
0
 
LVL 32

Assisted Solution

by:endital1097
endital1097 earned 500 total points
ID: 33677279
from the exchange managemnet shell
0
 
LVL 32

Assisted Solution

by:endital1097
endital1097 earned 500 total points
ID: 33677289
0
 

Author Comment

by:funkyone60
ID: 33683624
Made it to step 3b and I am getting this error

[PS] C:\Windows\system32>Set-SendConnector Internet -DomainSecureEnabled:$true
The operation couldn't be performed because object 'Internet' couldn't be found on 'ATL-ADS02.palaw.local'.
    + CategoryInfo          : NotSpecified: (0:Int32) [Set-SendConnector], ManagementObjectNotFoundException
    + FullyQualifiedErrorId : 90B99986,Microsoft.Exchange.Management.SystemConfigurationTasks.SetSendConnector
0
 
LVL 32

Assisted Solution

by:endital1097
endital1097 earned 500 total points
ID: 33683653
run "get-sendconnector" first to verify the name
0
 

Author Comment

by:funkyone60
ID: 33683863
this is what i get

[PS] C:\Windows\system32> get-sendconnector

Identity                                AddressSpaces                           Enable
--------                                -------------                           ------
Internet Email                          {SMTP:*;1}                              True
0
 
LVL 32

Assisted Solution

by:endital1097
endital1097 earned 500 total points
ID: 33683900
Set-SendConnector "Internet Email" -DomainSecureEnabled:$true
0
 

Author Closing Comment

by:funkyone60
ID: 33684890
Basically he walked me through seeting up TLS for Exchange 2010.  Thanks for the hwlp
0

Featured Post

Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When you’re making plans to join the modern business race, you should analyze various details that may affect your results. Nowadays, millions of businesses are trying to grow into established and appreciated professional enterprises.
After hours on line I found a solution which pointed to the inherited Active Directory permissions . You have to give/allow permissions to the "Exchange trusted subsystem" for the user in the Active Directory...
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…

737 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question