Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

How configure TLS only between two domains in Exchange Server 2013

Posted on 2016-09-15
4
Medium Priority
?
83 Views
Last Modified: 2016-09-19
I need configure in Exchange Server 2013 communication TLS only between 2 domains. The communication is with our server and other server "client".

Best regards.
0
Comment
Question by:ccedillo
  • 2
4 Comments
 
LVL 49

Expert Comment

by:Akhater
ID: 41800946
Opportunistic tls is enabled by default on all new(ish) email servers, so chances are you don't need to do anything tls is already being used
0
 

Author Comment

by:ccedillo
ID: 41801025
Hello Akhater. Thanks for your answer.

I am check in www.checktls.com and the result is:

test stage and result : TLS is not an option on this server

[000.070]  Connected to server  
[000.216] <-- 220 smg.macf.com.mx ESMTP mail.macf.com.mx  
[000.216]  We are allowed to connect  
[000.216] --> EHLO checktls.com  
[000.287] <-- 250-smg.macf.com.mx says EHLO to 216.68.85.112:53446
250-ENHANCEDSTATUSCODES
250-PIPELINING
250-8BITMIME
250 SIZE 35840000  
[000.288]  We can use this server  
[000.288]  TLS is not an option on this server  
[000.288] --> MAIL FROM:<test@assuretls.checktls.com>  
[000.360] <-- 250 2.0.0 MAIL FROM accepted  
[000.360]  Sender is OK  
[000.360] --> RCPT TO:<ccedillo@macf.com.mx>  
[000.436] <-- 250 2.0.0 RCPT TO accepted  
[000.436]  Recipient OK, E-mail address proofed  
[000.437] --> QUIT  
[000.508] <-- 221 2.3.0 smg.macf.com.mx closing connection
0
 
LVL 49

Accepted Solution

by:
Akhater earned 2000 total points
ID: 41801071
If that's the receiving side smtp server then the only way is to contact the it responsible for that domain and let them enable tls on their server. Nothing to do on exchange side
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 41801286
If the other side or you require the use of TLS, then you need to configure Mutual TLS. That ensures that the traffic goes over TLS and is unable to fall back. While it is true that Exchange does opportunist TLS, that allows fall back.
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to effectively resolve the number one email related issue received by helpdesks.
This article will help to fix the below errors for MS Exchange Server 2016 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
Suggested Courses

577 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question