Solved

How configure TLS only between two domains in Exchange Server 2013

Posted on 2016-09-15
4
41 Views
Last Modified: 2016-09-19
I need configure in Exchange Server 2013 communication TLS only between 2 domains. The communication is with our server and other server "client".

Best regards.
0
Comment
Question by:ccedillo
  • 2
4 Comments
 
LVL 49

Expert Comment

by:Akhater
Comment Utility
Opportunistic tls is enabled by default on all new(ish) email servers, so chances are you don't need to do anything tls is already being used
0
 

Author Comment

by:ccedillo
Comment Utility
Hello Akhater. Thanks for your answer.

I am check in www.checktls.com and the result is:

test stage and result : TLS is not an option on this server

[000.070]  Connected to server  
[000.216] <-- 220 smg.macf.com.mx ESMTP mail.macf.com.mx  
[000.216]  We are allowed to connect  
[000.216] --> EHLO checktls.com  
[000.287] <-- 250-smg.macf.com.mx says EHLO to 216.68.85.112:53446
250-ENHANCEDSTATUSCODES
250-PIPELINING
250-8BITMIME
250 SIZE 35840000  
[000.288]  We can use this server  
[000.288]  TLS is not an option on this server  
[000.288] --> MAIL FROM:<test@assuretls.checktls.com>  
[000.360] <-- 250 2.0.0 MAIL FROM accepted  
[000.360]  Sender is OK  
[000.360] --> RCPT TO:<ccedillo@macf.com.mx>  
[000.436] <-- 250 2.0.0 RCPT TO accepted  
[000.436]  Recipient OK, E-mail address proofed  
[000.437] --> QUIT  
[000.508] <-- 221 2.3.0 smg.macf.com.mx closing connection
0
 
LVL 49

Accepted Solution

by:
Akhater earned 500 total points
Comment Utility
If that's the receiving side smtp server then the only way is to contact the it responsible for that domain and let them enable tls on their server. Nothing to do on exchange side
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
Comment Utility
If the other side or you require the use of TLS, then you need to configure Mutual TLS. That ensures that the traffic goes over TLS and is unable to fall back. While it is true that Exchange does opportunist TLS, that allows fall back.
0

Featured Post

What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

We are happy to announce a brand new addition to our line of acclaimed email signature management products – CodeTwo Email Signatures for Office 365.
Marketers need statistics and metrics like everybody else needs oxygen. In this article we explain how to enable marketing campaign statistics for Microsoft Exchange mail.
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now