RE: How Much of a Problem Can There Be Setting 'Requires TLS Encryptio
From: Pat Cai[MSFT] (v-patcai_at_online.microsoft.com)
Date: 03/10/05
- Next message: Pat Cai[MSFT]: "RE: Server Response 550 5.7.1 Message Rejected even though we auth"
- Previous message: Geoff Pearce: "Re: A Lot of Undeliverables in Last Two Days?"
- In reply to: ikeith: "How Much of a Problem Can There Be Setting 'Requires TLS Encryptio"
- Next in thread: ikeith: "RE: How Much of a Problem Can There Be Setting 'Requires TLS Encry"
- Reply: ikeith: "RE: How Much of a Problem Can There Be Setting 'Requires TLS Encry"
- Messages sorted by: [ date ] [ thread ]
Date: Thu, 10 Mar 2005 10:33:40 GMT
Hi Irene,
The official standard for this technology is known as Transport Level
Security (TLS). Exchange SMTP supports TLS for its communication.
TLS is generally not supported across the Internet between SMTP hosts.
However, it may be used in point to point communication. TLS requires a
certificate on the Server side (i.e. the receiving host). The SMTP client
(i.e. the sending host which could be an Exchange server) simply specifies
to use TLS by ticking a check box. No other configuration is required on
the client. TLS will then encrypt the whole communication between Client
and Server.
That means, if your SMTP virtual server is configured, but the remote side
does not support TLS, then the connection cannot be established and no
message transfer takes place. Therefore only select this option if you know
that you will be connecting to a host which has TLS. For more information,
please refer to:
829721 How to Help Protect SMTP Communication by Using the Transport Layer
http://support.microsoft.com/?id=829721
329061 XADM: Exchange Server Cannot Communicate with Non-TLS Domains
http://support.microsoft.com/?id=329061
BTW, if you just want to secure the message on context (application) level
but not the connection (transport) level, S/MIME will be a good choice. For
more information, please refer to:
Exchange Server 2003 Message Security Guide
http://www.microsoft.com/technet/prodtechnol/exchange/guides/E2k3MsgSecGuide
/2da3d7b6-4187-46c1-a91a-66ae13bdbd98.mspx
Hope it helps.
Regards,
Pat Cai
Microsoft Online Partner Support
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
=====================================================
Business-Critical Phone Support (BCPS) provides you with technical phone
support at no charge during critical LAN outages or "business down"
situations. This benefit is available 24 hours a day, 7 days a week to all
Microsoft technology partners in the United States and Canada. This and
other support options are available here:
BCPS:
https://partner.microsoft.com/US/technicalsupport/supportoverview/40010469
Others: https://partner.microsoft.com/US/technicalsupport/supportoverview/
If you are outside the United States, please visit our International
Support page:
http://support.microsoft.com/default.aspx?scid=%2finternational.aspx.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
- Next message: Pat Cai[MSFT]: "RE: Server Response 550 5.7.1 Message Rejected even though we auth"
- Previous message: Geoff Pearce: "Re: A Lot of Undeliverables in Last Two Days?"
- In reply to: ikeith: "How Much of a Problem Can There Be Setting 'Requires TLS Encryptio"
- Next in thread: ikeith: "RE: How Much of a Problem Can There Be Setting 'Requires TLS Encry"
- Reply: ikeith: "RE: How Much of a Problem Can There Be Setting 'Requires TLS Encry"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
