Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 840
  • Last Modified:

How do I add TLS domains in Exchange Online Protection

I need to configure a number of domains for TLS encryption in Exchange Online Protection. I run Exchange 2007 on-premise and use EOP for security. I think the only way to do this is through an EOP transport rule. So I ran the following commands:

$TLSList = Import-CSV -Path "c:\temp\TLSDomains.csv" | Select-Object -ExpandProperty Domains
New-TransportRule -Name "Global TLS Domains List" -RecipientDomainIs $TLSList -RouteMessageOutboundRequireTls $true

I get the following error:
The rule can't be created because it is too large. It has 11502 characters, and the maximum number of characters is 4096. Reduce the size, either by removing content, such as words or regular expressions, from the rule; or by removing conditions, exceptions, or actions from the rule.

The TLSDomains.csv file contains over 250 domains. Is this a limit I can increase or do I have to create multiple rules?

Am I doing this the right way or is there another place to add my TLS domains?

Thank you.
0
cyberleo2000
Asked:
cyberleo2000
  • 2
  • 2
1 Solution
 
Vasil Michev (MVP)Commented:
Split it to multiple rules, or use wildcards/regexp to minimize the number of domains.

Some other limits you might run into:

http://technet.microsoft.com/en-us/library/jj907303(v=exchg.150).aspx#TransportRuleLimits
0
 
cyberleo2000Author Commented:
And this is the only way to force encryption when sending to a domain, via a transport rule?
0
 
cyberleo2000Author Commented:
We're just using exchange online protection at this point.

thanks
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now