Solved

TLS security on exchange 2010 ,

Posted on 2011-03-09
8
1,158 Views
Last Modified: 2012-05-11
TLS security on exchange 2010 ,

I am attempting to convert a 2003 exchange to a 2010 exchange and the only connector I see is a connector named “TLS_ dedicated connector”  

The only confirmed items I see is under advanced ,outbound security  TLS security is checked and the anonymous access is also selected

Also the   “address space” tab contains several domain names,


If I  confireure every tab seen here the same in 2010 exchange will all work , I assume I can test the mail on the new exchange by simply sending a email to one of the domains in the address space is there anything I am missing like a cert or anything , any advice on this would be helpful ,

Thanks!!!!
 TLS TLSS
0
Comment
Question by:NAMEWITHELD12
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
8 Comments
 
LVL 1

Author Comment

by:NAMEWITHELD12
ID: 35089497
http://technet.microsoft.com/en-us/library/bb430753.aspx

i have reseached this some more and i have found out that you do not have to configure anything as far as i can tell

"In earlier versions of Exchange, you had to configure TLS manually. In addition, you had to install a valid certificate, suitable for TLS usage, on the server running Exchange. In Exchange 2010, Setup creates a self-signed certificate. By default, TLS is enabled. This enables any sending system to encrypt the inbound SMTP session to Exchange. By default, Exchange 2010 also attempts TLS for all remote connections"
0
 
LVL 74

Accepted Solution

by:
Glen Knight earned 500 total points
ID: 35093644
No you don't Exchange 2010 will use oportunistic TLS so as long as it's enabled (which it is by default) it will be attempted.
0
 
LVL 1

Author Comment

by:NAMEWITHELD12
ID: 35094154
where would you find the setting for operunistic TLS , so I can confirm , this is good news it seems like all I will have to do is test it

thanks!!!!!!
0
Free eBook: Backup on AWS

Everything you need to know about backup and disaster recovery with AWS, for FREE!

 
LVL 74

Expert Comment

by:Glen Knight
ID: 35094163
You don't have to set it, it will try TLS automatically if it's checked and then fail if it's not available to non-TLS
0
 
LVL 1

Author Comment

by:NAMEWITHELD12
ID: 35098740
yeah but i was just wondering were the check box it , just for my education
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 35098875
I apologise, I misunderstood your question.

Under Organisation Configuration > Hub Transport > Send Connector

Right click the send connector and select properties.  Under the Network tab put a check in the box that says "Enable Domain Security (Mutual AUTH TLS)"
0
 
LVL 1

Author Closing Comment

by:NAMEWITHELD12
ID: 35099435
Thanks !!!!!!!!!!!!!!!!!!!!!!!
0
 

Expert Comment

by:Steve Tinsley
ID: 36290422
Does TLS on exchange 2010 only work when sending email via DNS rather than using a smarthost?
0

Featured Post

Windows running painfully slow? Try these tips..

Stay away from Speed Up Computer Programs that do more harm than good.
Try these tips instead.
Step by step instructions in trouble shooting Windows Performance issues.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
Unified and professional email signatures help maintain a consistent company brand image to the outside world. This article shows how to create an email signature in Exchange Server 2010 using a transport rule and how to overcome native limitations …
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
This video discusses moving either the default database or any database to a new volume.

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question