I'm trying to configure TLS in my Exchange 2007/2010 environment and having some issues.
We have a send connector (Default) just sends mail out to (*) to the internet based on MX records. However we would like for the following to happen.
We would like to be able to FORCE TLS on specific domains.
To my knowledge we would have to create an additional send connector for those specific domains and force it to only send that mail encrypted and all other domains can go through the default (current) send connector.
I followed this article from Microsoft.
Set-TransportConfig -TLSSendDomainSecureList domain.com
Set-SendConnector "Secured Send Connector" -DomainSecureEnabled:$True
I've also used http://www.checktls.com/TestSender
and I get my reply as 'successful'. Not sure what this means.
However, I just need to make sure if I send an e-mail firstname.lastname@example.org that it WILL be sent SECURELY or it will FAIL.
I just feel like Microsoft kicked the bucket on this. Considering if I ever need to add a domain to the list, I'd have to do it via command list and also include domains that already exist in that list that has no command to show.
Any guidance would be greatly appreciated.
Thanks in advance!