• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1214
  • Last Modified:


I am trying to confirm if certain email addresses will be automatically be TLS encrypted if the sending server is Exchange 2007 or Exchange 2010.

When I go to www.checktls.com and put i emails address, some address come back with a Failed  "Cert OK"

i) does this mean the recipient does not auto accept TLS?
ii) if it does accept TLS, will Exchange 2007 and 2010 by default send it TLS?

Some pass the "Cert OK" on the primary mx record and some fail on the secondary record.

iii)  Will email sometimes be TLS encryped and sometimes not?
  • 2
1 Solution
Here is an example of GMAIL.  They accept TLS but they may have an expire CERT or a self signed CERT.
ie0Author Commented:
Does this mean it will always be tls even if the cert fails?
Yes, it will do TLS.  It just not able to verify the certifcate.

Featured Post

Granular recovery for Microsoft Exchange

With Veeam Explorer for Microsoft Exchange you can choose the Exchange Servers and restore points you’re interested in, and Veeam Explorer will present the contents of those mailbox stores for browsing, searching and exporting.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now