we are getting below error when we did test on our mx record
Trying TLS on mxb-xxhosted.com[138.xx.xx.xx] (preference of 10):
Cert Hostname DOES NOT VERIFY
(see RFC-2818 section 3.1 paragraph 4 for info on wildcard ("*") matching)
So email is encrypted but the host is not verified
cert not revoked by CRL
cert not revoked by OCSP
do we need to install wild card certificate?
THIS IS ONLY happening from one external email address inbound to our exchange server through smtp gateway
all other emails are flowing in fine.
is it something to do with enforced TLS if so where should we implement?