Solved

TLS security on exchange 2010 ,

Posted on 2011-03-09
8
1,135 Views
Last Modified: 2012-05-11
TLS security on exchange 2010 ,

I am attempting to convert a 2003 exchange to a 2010 exchange and the only connector I see is a connector named “TLS_ dedicated connector”  

The only confirmed items I see is under advanced ,outbound security  TLS security is checked and the anonymous access is also selected

Also the   “address space” tab contains several domain names,


If I  confireure every tab seen here the same in 2010 exchange will all work , I assume I can test the mail on the new exchange by simply sending a email to one of the domains in the address space is there anything I am missing like a cert or anything , any advice on this would be helpful ,

Thanks!!!!
 TLS TLSS
0
Comment
Question by:NAMEWITHELD12
  • 4
  • 3
8 Comments
 
LVL 1

Author Comment

by:NAMEWITHELD12
ID: 35089497
http://technet.microsoft.com/en-us/library/bb430753.aspx

i have reseached this some more and i have found out that you do not have to configure anything as far as i can tell

"In earlier versions of Exchange, you had to configure TLS manually. In addition, you had to install a valid certificate, suitable for TLS usage, on the server running Exchange. In Exchange 2010, Setup creates a self-signed certificate. By default, TLS is enabled. This enables any sending system to encrypt the inbound SMTP session to Exchange. By default, Exchange 2010 also attempts TLS for all remote connections"
0
 
LVL 74

Accepted Solution

by:
Glen Knight earned 500 total points
ID: 35093644
No you don't Exchange 2010 will use oportunistic TLS so as long as it's enabled (which it is by default) it will be attempted.
0
 
LVL 1

Author Comment

by:NAMEWITHELD12
ID: 35094154
where would you find the setting for operunistic TLS , so I can confirm , this is good news it seems like all I will have to do is test it

thanks!!!!!!
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 35094163
You don't have to set it, it will try TLS automatically if it's checked and then fail if it's not available to non-TLS
0
Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

 
LVL 1

Author Comment

by:NAMEWITHELD12
ID: 35098740
yeah but i was just wondering were the check box it , just for my education
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 35098875
I apologise, I misunderstood your question.

Under Organisation Configuration > Hub Transport > Send Connector

Right click the send connector and select properties.  Under the Network tab put a check in the box that says "Enable Domain Security (Mutual AUTH TLS)"
0
 
LVL 1

Author Closing Comment

by:NAMEWITHELD12
ID: 35099435
Thanks !!!!!!!!!!!!!!!!!!!!!!!
0
 

Expert Comment

by:sjtinsley83
ID: 36290422
Does TLS on exchange 2010 only work when sending email via DNS rather than using a smarthost?
0

Featured Post

[Webinar] Disaster Recovery and Cloud Management

Learn from Unigma and CloudBerry industry veterans which providers are best for certain use cases and how to lower cloud costs, how to grow your Managed Services practice in IaaS clouds, and how to utilize public cloud for Disaster Recovery

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Finding original email is quite difficult due to their duplicates. From this article, you will come to know why multiple duplicates of same emails appear and how to delete duplicate emails from Outlook securely and instantly while vital emails remai…
This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
This Experts Exchange video Micro Tutorial shows how to tell Microsoft Office that a word is NOT spelled correctly. Microsoft Office has a built-in, main dictionary that is shared by Office apps, including Excel, Outlook, PowerPoint, and Word. When …
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

26 Experts available now in Live!

Get 1:1 Help Now