Solved

TLS security on exchange 2010 ,

Posted on 2011-03-09
8
1,122 Views
Last Modified: 2012-05-11
TLS security on exchange 2010 ,

I am attempting to convert a 2003 exchange to a 2010 exchange and the only connector I see is a connector named “TLS_ dedicated connector”  

The only confirmed items I see is under advanced ,outbound security  TLS security is checked and the anonymous access is also selected

Also the   “address space” tab contains several domain names,


If I  confireure every tab seen here the same in 2010 exchange will all work , I assume I can test the mail on the new exchange by simply sending a email to one of the domains in the address space is there anything I am missing like a cert or anything , any advice on this would be helpful ,

Thanks!!!!
 TLS TLSS
0
Comment
Question by:NAMEWITHELD12
  • 4
  • 3
8 Comments
 
LVL 1

Author Comment

by:NAMEWITHELD12
ID: 35089497
http://technet.microsoft.com/en-us/library/bb430753.aspx

i have reseached this some more and i have found out that you do not have to configure anything as far as i can tell

"In earlier versions of Exchange, you had to configure TLS manually. In addition, you had to install a valid certificate, suitable for TLS usage, on the server running Exchange. In Exchange 2010, Setup creates a self-signed certificate. By default, TLS is enabled. This enables any sending system to encrypt the inbound SMTP session to Exchange. By default, Exchange 2010 also attempts TLS for all remote connections"
0
 
LVL 74

Accepted Solution

by:
Glen Knight earned 500 total points
ID: 35093644
No you don't Exchange 2010 will use oportunistic TLS so as long as it's enabled (which it is by default) it will be attempted.
0
 
LVL 1

Author Comment

by:NAMEWITHELD12
ID: 35094154
where would you find the setting for operunistic TLS , so I can confirm , this is good news it seems like all I will have to do is test it

thanks!!!!!!
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 35094163
You don't have to set it, it will try TLS automatically if it's checked and then fail if it's not available to non-TLS
0
Do email signature updates give you a headache?

Constantly trying to correctly format email signatures? Spending all of your time at every user’s desk to make updates? Want high-quality HTML signatures on all devices, including on mobiles and Macs? Then, let Exclaimer solve all your email signature problems today!

 
LVL 1

Author Comment

by:NAMEWITHELD12
ID: 35098740
yeah but i was just wondering were the check box it , just for my education
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 35098875
I apologise, I misunderstood your question.

Under Organisation Configuration > Hub Transport > Send Connector

Right click the send connector and select properties.  Under the Network tab put a check in the box that says "Enable Domain Security (Mutual AUTH TLS)"
0
 
LVL 1

Author Closing Comment

by:NAMEWITHELD12
ID: 35099435
Thanks !!!!!!!!!!!!!!!!!!!!!!!
0
 

Expert Comment

by:sjtinsley83
ID: 36290422
Does TLS on exchange 2010 only work when sending email via DNS rather than using a smarthost?
0

Featured Post

Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

Join & Write a Comment

We are happy to announce a brand new addition to our line of acclaimed email signature management products – CodeTwo Email Signatures for Office 365.
This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
In this video we show how to create a User Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Mailb…
In this video we show how to create a Contact in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Contact ta…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now