Event banner

Microsoft Government CMMC AMA

Event Ended
Tuesday, Apr 12, 2022, 10:30 AM PDT
In-Person

Event details

We want to hear from our customers and answer their questions around how we can help them achieve CMMC compliance with your Microsoft Azure and Microsoft 365 subscriptions. We will be hosting an "Ask...
Sarah_Gilbert
Updated Apr 12, 2022
AMA
Smccartin's avatar
Smccartin
Copper Contributor
Apr 12, 2022
There are some complications with encryption Assuming Microsoft uses FIPS compliant encryption, then you would have to change the default TLS configuration from opportunistic encryption to forced encryption. Transmission of CUI is allowed as long as it is enclosed in FIPS approved encryption. Though TLS only encrypts the transfer between mail servers so something like S/MIME might be needed.
Kenskens3104's avatar
Kenskens3104
Occasional Reader
Apr 12, 2022
might that not mean that all communication between his mail server and others would all have to have the same encryption settings?
  • Smccartin's avatar
    Smccartin
    Copper Contributor
    Apr 12, 2022
    You configure this in the exchange connector settings, assuming you aren't setting these up for each organization you send mail to (which is entirely possible), you can use a wildcard where you normally specify the partner domain.
Date and Time
Apr 12, 202210:30 AM - 11:30 AM PDT