Solved

TLS setup on Exchange 2010

Posted on 2013-05-21
3
376 Views
Last Modified: 2013-06-10
Hi. I have a standalone Exchange server on our domain, I have received a request to setup TLS to a 3rd party company domain.

For secure email we use Symantec PGP for sending out emails, I am not too sure of the benefit if any on our part to create the TLS connection.

Could someone please provide details of what I would need to configure if this was done, is there any gotcha's or problems that might be incurred?

There is lots online, but I am looking for specific work through details on a standalone Exchange 2010.

Thanks in advance.
0
Comment
Question by:mercuriousu2
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 6

Expert Comment

by:BurundiLapp
ID: 39184006
Sorry I have no step by step instructions but it is good practice to have TLS setup on your external facing SMTP services with at least opportunistic encryption, many organisations require encrypted transmission links with suppliers and/or clients as part of their security policy, encrypting the envelope itself shouldn't be considered as enough.
0
 

Author Comment

by:mercuriousu2
ID: 39184051
This is already setup by default, what I was requested was a TLS setup with a specific domain to secure all email traffic end to end.  

I already use PGP as a company policy wide solution, I am not too sure if a specific TLS connection  would work in tandem if indeed I attempted to set it up.
0
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 500 total points
ID: 39190167
You are referring to mutual TLS.
TLs works at the transport level, PGP works at the content level.

These are the instructions from Microsoft:
http://technet.microsoft.com/en-us/library/bb123543(v=exchg.141).aspx

You only need Step 3 and Step 4, which will tell Exchange which domains need to use TLS only. Quick note - the list of domains is replaced each time, so if you have a list of domains such as example.com, example.net and you want to add example.co.uk, then you will have to include all three domains in the list.

Simon.
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Windows server 2008 exchange 3 25
Exchange 2016 OWA attachment issues 4 47
Exchange 2016 CU5 upgrade stuck 9 76
Exchange Database fails to mount 19 35
Follow this checklist to learn more about the 15 things you should never include in an email signature from personal quotes, animated gifs and out-of-date marketing content.
This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question