Forum Discussion

Collins_Kouam's avatar
Collins_Kouam
Copper Contributor
Oct 30, 2023
Solved

All messages sent outside my organization are not encrypted

Hi community Experts,    I have an exchange configuration as follows: . 2 servers (a Mailbox & an Edge Transport) run under windows 2022 . Exchange server 2019 installed on the 2 servers. I foll...
Exchange Server
  • Collins_Kouam's avatar
    Collins_Kouam
    Nov 06, 2023
    Hello community experts,

    I'm happy to inform you that I've just solved my problem.
    The problem wasn't related to my exchange servers at all, but rather to my Firewall/Router.

    There was a rule in my Firewall/Router that prevented my edge transport server from using START TLS.
    I hope this may help others in their troubleshooting process.

    Thank you all for your answers.
    Collins_Kouam
Andres-Bohren's avatar
Andres-Bohren
Steel Contributor
Nov 01, 2023

HI Collins_Kouam 


You need to have a Public Certificate for example edge.domain.tld with a private Key installed on your Exchange Edge Server.

Get-SendConnector -Identity YourInternetConnectorName | fl
#Check the Property TlsCertificateName

#Create the Variable on your Edge Server

$Cert = Get-ExchangeCertificate -Thumbprint "ThumbPrintOfEdgeCertificate"
$tlscertificatename = "<i>$($cert.Issuer)<s>$($cert.Subject)"

#You need to set this on the Exchange Server (Not Edge) > will then transferred via EdgeSync
Set-Sendconnecter -Identity "ValueFrom $tlscertificatename" -TlsCertificate $tlscertificatename

Regards
Andres