Hi Pushkal, I am trying to set between two organizations. Thank you for the articles, and I have read both articles. A few specific questions are: 1. I have two front end servers (MS network load balanced) that has SSL installed for OWA. Do I need to purcahse another TLS certificate for TLS? 2. Do I create the new SMTP virtual server on the frond end server or back end server? Same questions with the new routing group? Once I have Exchange side setting clarified, I am wondering how Postini and our Linux gateway will interact with TLS encrypted emails. I know this is probably out of the scope of an Exchange admin, but would appreciate if anyone can provide some advice based on their experience. Regards, Henry

HI there, I got a request to set TLS on our Exchange 2003 (SP2) server. I have done some reading, but not quite sure if it is feasible to set in our messenging/Exchange environment. My company's set up is followed: For all inbound emails, they all hit Postini first, then to our email gateway (Linux Postscript server), then forward to our Frone end server, and finally hit the back end server. For outbound emails, Exchange back end server forward them all to the gateway Linux email server (serves as a smart host). Could someone comment whether it is possible to set up TLS with our messaging system configuration? Thanks, Henry

Are you trying to setup TLS internally .....or with some other exchange organization...? Below are some good articles about setting up TLS, This would probably a good starter.. http://blogs.technet.com/b/exchange/archive/2006/10/04/3395006.aspx http://support.microsoft.com/kb/829721 Let us know if you have any specific question. Regards, Pushkal MishrA

Hi expohz, For 1, It depends what the type of the CERT you use. If the Cert is a SAN CERT and contains the needed domain name (smtp used). If so, you could use the same CERT. Or, you will need a new one. For 2, Sure, you need create a new smtp virtual server, because you can not use the TLS with all of the external domain; that means if you use the TLS with other external domain, the other domain also need enable the TLS, so the configuration always used between the partners. Because you use the linux email server as the smtp gateway for send/receive emails, that means you need configure the smtp TLS on the servern and do not need create smtp server on the exchange server, maybe you need add new smtp server/connecotr on the linux email server. I am not familiar with the linux server, you'd better to post the issue on the linux email related forum, you will get more hlep. Regards! Gavin TechNet Subscriber Support in forum If you have any feedback on our support, please contacttngfb@microsoft.com Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

Hi Henry, Any update for your issue? Regards! Gavin TechNet Subscriber Support in forum If you have any feedback on our support, please contact tngfb@microsoft.com Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.