Solved

Does anyone know how to setup TLS for a specific domain in Exchange 2010?

Posted on 2010-09-14
11
2,567 Views
Last Modified: 2012-06-27
I need to setup TLS for one client only.  I can't find any documentation on how to do this in Exchange 2010.  We use Postini for filtering as well- so I am lokking how to make it work for both.
0
Comment
Question by:funkyone60
  • 6
  • 5
11 Comments
 
LVL 32

Accepted Solution

by:
endital1097 earned 500 total points
Comment Utility
enabling a receive connector authentication with TLS allow for TLS communication
telnet into the recieve connector and send a ehlo and you will see the STARTTLS verb
0
 

Author Comment

by:funkyone60
Comment Utility
this is done in exchange?  I need to send tls email to one client- this doesn't sound right to me
0
 
LVL 32

Expert Comment

by:endital1097
Comment Utility
for outbound make sure your certificate has a subject name that matches the fqdn of your send connector

get-sendconnector | fl name,fqdn

get-exchangecertificate | where { $_.services.tostring().contains("SMTP") -eq $true }
0
 

Author Comment

by:funkyone60
Comment Utility
you are way past my understanding- where do I do this in exchange?
0
 
LVL 32

Assisted Solution

by:endital1097
endital1097 earned 500 total points
Comment Utility
from the exchange managemnet shell
0
How does your email signature look on mobiles?

Do your employees use mobile devices to reply to emails? With mobile becoming increasingly important to the business world, it is in your best interest to make sure that your email signature looks great across all types of devices.

 
LVL 32

Assisted Solution

by:endital1097
endital1097 earned 500 total points
Comment Utility
0
 

Author Comment

by:funkyone60
Comment Utility
Made it to step 3b and I am getting this error

[PS] C:\Windows\system32>Set-SendConnector Internet -DomainSecureEnabled:$true
The operation couldn't be performed because object 'Internet' couldn't be found on 'ATL-ADS02.palaw.local'.
    + CategoryInfo          : NotSpecified: (0:Int32) [Set-SendConnector], ManagementObjectNotFoundException
    + FullyQualifiedErrorId : 90B99986,Microsoft.Exchange.Management.SystemConfigurationTasks.SetSendConnector
0
 
LVL 32

Assisted Solution

by:endital1097
endital1097 earned 500 total points
Comment Utility
run "get-sendconnector" first to verify the name
0
 

Author Comment

by:funkyone60
Comment Utility
this is what i get

[PS] C:\Windows\system32> get-sendconnector

Identity                                AddressSpaces                           Enable
--------                                -------------                           ------
Internet Email                          {SMTP:*;1}                              True
0
 
LVL 32

Assisted Solution

by:endital1097
endital1097 earned 500 total points
Comment Utility
Set-SendConnector "Internet Email" -DomainSecureEnabled:$true
0
 

Author Closing Comment

by:funkyone60
Comment Utility
Basically he walked me through seeting up TLS for Exchange 2010.  Thanks for the hwlp
0

Featured Post

Shouldn't all users have the same email signature?

You wouldn't let your users design their own business cards, would you? So, why do you let them design their own email signatures? Think of the damage they could be doing to your brand reputation! Choose the easy way to manage set up and add email signatures for all users.

Join & Write a Comment

Suggested Solutions

Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…
how to add IIS SMTP to handle application/Scanner relays into office 365.

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

5 Experts available now in Live!

Get 1:1 Help Now