Solved

How do I add TLS domains in Exchange Online Protection

Posted on 2013-11-14
4
783 Views
Last Modified: 2013-11-14
I need to configure a number of domains for TLS encryption in Exchange Online Protection. I run Exchange 2007 on-premise and use EOP for security. I think the only way to do this is through an EOP transport rule. So I ran the following commands:

$TLSList = Import-CSV -Path "c:\temp\TLSDomains.csv" | Select-Object -ExpandProperty Domains
New-TransportRule -Name "Global TLS Domains List" -RecipientDomainIs $TLSList -RouteMessageOutboundRequireTls $true

I get the following error:
The rule can't be created because it is too large. It has 11502 characters, and the maximum number of characters is 4096. Reduce the size, either by removing content, such as words or regular expressions, from the rule; or by removing conditions, exceptions, or actions from the rule.

The TLSDomains.csv file contains over 250 domains. Is this a limit I can increase or do I have to create multiple rules?

Am I doing this the right way or is there another place to add my TLS domains?

Thank you.
0
Comment
Question by:cyberleo2000
  • 2
  • 2
4 Comments
 
LVL 38

Accepted Solution

by:
Vasil Michev (MVP) earned 500 total points
Comment Utility
Split it to multiple rules, or use wildcards/regexp to minimize the number of domains.

Some other limits you might run into:

http://technet.microsoft.com/en-us/library/jj907303(v=exchg.150).aspx#TransportRuleLimits
0
 

Author Comment

by:cyberleo2000
Comment Utility
And this is the only way to force encryption when sending to a domain, via a transport rule?
0
 
LVL 38

Expert Comment

by:Vasil Michev (MVP)
Comment Utility
0
 

Author Comment

by:cyberleo2000
Comment Utility
We're just using exchange online protection at this point.

thanks
0

Featured Post

Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

Join & Write a Comment

Synchronize a new Active Directory domain with an existing Office 365 tenant
Veeam Backup & Replication has added a new integration – Veeam Backup for Microsoft Office 365.  In this blog, we will discuss how you can benefit from Office 365 email backup with the Veeam’s new product and try to shed some light on the needs and …
Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…
how to add IIS SMTP to handle application/Scanner relays into office 365.

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now