Hi guys,

I have a customer that we recently migrated from Groupwise to Exchange Server 2013.

The customer have a few organisations/partners that they want to secure the message flow.

- Is Exchange Server 2013 using opportunistic TLS by default? We are using a 3rd party certificate from digicert, can that one be used for this?

- If we wanna utilize the Mutual TLS, can we use the same certificate or do we have to request a new one?

- do we have to have the SAN name of company.com/smtpnamespace in that certificate? or are one exchanging certificates (guess one don't want to exchange root certs?)

- is a wildcard certificate supported?

- how do one configure the connection?

I'm unsure how this works so any hints, guidance or article are appreciated, thx!

• Edited by [fredrik] 3 hours 20 minutes ago