Exchange 2010 and securing mail to certain accounts.
We have developers that are on a domain and exchange server in another country. Currently we have their addresses within our domain here and they have accounts on a (separate)domain and Exchange server there. These developers have no internet access for security purposes. Current they have written a program that when we send to a certain single address, the sender puts the username$ in the subject line and the program on the other side, routes mail to the user internally there.
What I'm trying to find out is there a better way to make Exchange do this securely within the local domain or is it available within Exchange?
What I'm trying to find out is there a better way to make Exchange do this securely within the local domain or is it available within Exchange?
ASKER
Murali
Yes, mailboxes on both
" The DL should be allowed to email from external world." sorry DL? So what would prevent them from sending to the world in this configuration? Like sending code out.
"Then create a contact with the email address as that of group address they created." this address would be assigned to the Group, correct?
Yes, mailboxes on both
" The DL should be allowed to email from external world." sorry DL? So what would prevent them from sending to the world in this configuration? Like sending code out.
"Then create a contact with the email address as that of group address they created." this address would be assigned to the Group, correct?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
kevinhsieh: thanks, that looks more like what we need, but curious, what if we have webmail enabled. Say someone created a message, attached source code to the message and saved it to drafts, then logged in to webmail outside and downloaded. Will this protect this as well?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
kevinhsieh: thanks, I had a feeling all that would have to be disabled, but can't obviously, for cutting off everyone else. I was just given the task and trying best to give them what they want, for security. I do appreciate all you given me, as it has helped greatly.
Best regards
Best regards
ASKER
thanks again!
You can disable access via various protocols on a per mailbox/user basis. You can disable OWA, ActiveSync, POP3, and IMAP. I am not sure how you prevent MAPI access from outside.
If so, let them create a distribution group there including all the mailboxes they have. The DL should be allowed to email from external world.
Then create a contact with the email address as that of group address they created. Then exchange emails.