Forum Discussion
Exchange On Premise - MTA-STS protocol
Hi, I read https://learn.microsoft.com/en-us/purview/enhancing-mail-flow-with-mta-sts and only Exchange Online is discussed. Exchange On Premise doesn't seem to be mentioned. So I have t...
1. DNS settings
Add this TXT record:
_mta-sts.your-domain.com → "v=STSv1; id=20240301"
2. Create an A record:
mta-sts.your-domain.com → your mail server's IP
3. Create a policy file
on the website https://mta-sts..com/. well-known/mta-sts.txt Place the content:
text
version: STSv1
mode: testing
mx: your mail server 1. your domain.com
mx: your mail server 2. your domain.com
4. Run this command (Exchange Management Shell): powershell
Set-TransportConfig -TLSSendDomainSecureList "your domain.com"
5. Authentication tools:
Visit https://mta-sts.internet.nl Enter your domain name to test
6. Modify the policy file:
text
version. STSv1
mode: enforce # Change to enforce mode
mx: your mail server 1.yourdomain.com
max_age: 604800