I opened another blog with same question, but it seems like nobody is able to provide a full feedback in all steps required from exchange server and from Symantec Spam Gateway to enable TLS for a single domain.
As per link above, I have almost same identical infrastructure. All inbound/outbound email goes to Symantec BrightMail spam gateway[through send connector] and we also have another send connector to Office 365.
Should I create send connectors in the exchange server to use TLS for a single domain?
Should I setup a new domain in the spam gateway to force TLS for a single company?
Can someone please indicate all steps required from both exchange and Symantec BrightMail 10.0.2?
I am a little confused here with the Symantec appliance and O365. I do not want to enable TLS for the entire organization, only for emails sent to a specific partner
Please see links below, and let me know your thought