Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

How configure TLS only between two domains in Exchange Server 2013

Posted on 2016-09-15
4
Medium Priority
?
81 Views
Last Modified: 2016-09-19
I need configure in Exchange Server 2013 communication TLS only between 2 domains. The communication is with our server and other server "client".

Best regards.
0
Comment
Question by:ccedillo
  • 2
4 Comments
 
LVL 49

Expert Comment

by:Akhater
ID: 41800946
Opportunistic tls is enabled by default on all new(ish) email servers, so chances are you don't need to do anything tls is already being used
0
 

Author Comment

by:ccedillo
ID: 41801025
Hello Akhater. Thanks for your answer.

I am check in www.checktls.com and the result is:

test stage and result : TLS is not an option on this server

[000.070]  Connected to server  
[000.216] <-- 220 smg.macf.com.mx ESMTP mail.macf.com.mx  
[000.216]  We are allowed to connect  
[000.216] --> EHLO checktls.com  
[000.287] <-- 250-smg.macf.com.mx says EHLO to 216.68.85.112:53446
250-ENHANCEDSTATUSCODES
250-PIPELINING
250-8BITMIME
250 SIZE 35840000  
[000.288]  We can use this server  
[000.288]  TLS is not an option on this server  
[000.288] --> MAIL FROM:<test@assuretls.checktls.com>  
[000.360] <-- 250 2.0.0 MAIL FROM accepted  
[000.360]  Sender is OK  
[000.360] --> RCPT TO:<ccedillo@macf.com.mx>  
[000.436] <-- 250 2.0.0 RCPT TO accepted  
[000.436]  Recipient OK, E-mail address proofed  
[000.437] --> QUIT  
[000.508] <-- 221 2.3.0 smg.macf.com.mx closing connection
0
 
LVL 49

Accepted Solution

by:
Akhater earned 2000 total points
ID: 41801071
If that's the receiving side smtp server then the only way is to contact the it responsible for that domain and let them enable tls on their server. Nothing to do on exchange side
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 41801286
If the other side or you require the use of TLS, then you need to configure Mutual TLS. That ensures that the traffic goes over TLS and is unable to fall back. While it is true that Exchange does opportunist TLS, that allows fall back.
0

Featured Post

 [eBook] Windows Nano Server

Download this FREE eBook and learn all you need to get started with Windows Nano Server, including deployment options, remote management
and troubleshooting tips and tricks

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

On September 18, Experts Exchange launched the first installment of the Help Bell, a new feature for Premium Members, Team Accounts, and Qualified Experts. The Help Bell will serve as an additional tool to help teams increase question visibility.
If you have come across a situation where you need to find some EDB mailbox recovery techniques, then here you will find the same. In this article, we will take you through three techniques using which you will be able to perform EDB recovery. You …
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
This video discusses moving either the default database or any database to a new volume.
Suggested Courses

886 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question