It is no needed to import certificate for source server to target server if you are looking to configure TLS. You should be owner of certificate so that you can configure Exchange server. if you are using Exchange 2007 then you will need to generate certificate and enable the same for SMTP. After that you have to setup domain which would sent secured email by making use of set-TransportConfig command. Lastly you will need to configure Send Connector and Receive connector.
Code:
Set-TransportConfig -TLSSendDomainSecureList Contoso.com, set-TransportConfig -TLSReceiveDomainSecureList Contoso.com
Set-SendConnector Internet -DomainSecureEnabled:$True, Set-ReceiveConnector Inbound -DomainSecureEnabled:$True -AuthMechanism TLS
You must enforce authethcation mechanism as TLS does not supposed to implement it on inbound connection. you can implement TLS for Contoso.com because of below mentioned results.
Contoso.com supposed to mentioned into Set-TransportConfig cmdlet on TLSReceiveDomainSecureList parameter.
On Receive Connector DomainSecureEnabled parameter should be set to True.
Rest of the sender which are not listed on TLSReceiveDomainSecureList parameter in Set-TransportConfig cmdlet are going to use TLS if it has been supported on sending system.
Bookmarks