Solved

How configure TLS only between two domains in Exchange Server 2013

Posted on 2016-09-15
4
52 Views
Last Modified: 2016-09-19
I need configure in Exchange Server 2013 communication TLS only between 2 domains. The communication is with our server and other server "client".

Best regards.
0
Comment
Question by:ccedillo
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 49

Expert Comment

by:Akhater
ID: 41800946
Opportunistic tls is enabled by default on all new(ish) email servers, so chances are you don't need to do anything tls is already being used
0
 

Author Comment

by:ccedillo
ID: 41801025
Hello Akhater. Thanks for your answer.

I am check in www.checktls.com and the result is:

test stage and result : TLS is not an option on this server

[000.070]  Connected to server  
[000.216] <-- 220 smg.macf.com.mx ESMTP mail.macf.com.mx  
[000.216]  We are allowed to connect  
[000.216] --> EHLO checktls.com  
[000.287] <-- 250-smg.macf.com.mx says EHLO to 216.68.85.112:53446
250-ENHANCEDSTATUSCODES
250-PIPELINING
250-8BITMIME
250 SIZE 35840000  
[000.288]  We can use this server  
[000.288]  TLS is not an option on this server  
[000.288] --> MAIL FROM:<test@assuretls.checktls.com>  
[000.360] <-- 250 2.0.0 MAIL FROM accepted  
[000.360]  Sender is OK  
[000.360] --> RCPT TO:<ccedillo@macf.com.mx>  
[000.436] <-- 250 2.0.0 RCPT TO accepted  
[000.436]  Recipient OK, E-mail address proofed  
[000.437] --> QUIT  
[000.508] <-- 221 2.3.0 smg.macf.com.mx closing connection
0
 
LVL 49

Accepted Solution

by:
Akhater earned 500 total points
ID: 41801071
If that's the receiving side smtp server then the only way is to contact the it responsible for that domain and let them enable tls on their server. Nothing to do on exchange side
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 41801286
If the other side or you require the use of TLS, then you need to configure Mutual TLS. That ensures that the traffic goes over TLS and is unable to fall back. While it is true that Exchange does opportunist TLS, that allows fall back.
0

Featured Post

Edgartown IT Case Study

Learn about Edgartown's quest to ensure the safety and security of the entire town's employee and citizen data. Read the case study!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

We are happy to announce a brand new addition to our line of acclaimed email signature management products – CodeTwo Email Signatures for Office 365.
Learn to move / copy / export exchange contacts to iPhone without using any software. Also see the issues in configuration of exchange with iPhone to migrate contacts.
In this video we show how to create a Distribution Group in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >>…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question