This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(208, 16%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJS%3C/text%3E%3C/svg%3E)
Hi,
We have a customer who is having issues receiving email from someone on the internet. They have a single Exchange 2016 server and internet mail is delivered directly to that server (no 3rd part mail service, or other devices in the way like an Edge server).
This is kind of an out of the box server config, so default receive connectors answering on server.domain.local.
I was wondering the best way to get TLS working (For those on the internet who are using it) while allowing people not using TLS to keep working.
As we can't change the name the default connector is answering with, I assume the best bet would be to add a new NIC/IP and create a new receive connector listening on that, leaving the default connector alone. We can then set up TLS on that using a name that matches the 3rd party certificate.
If anyone has any ideas or can steer me right, that would be great.
Thanks
J
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 17%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYS%3C/text%3E%3C/svg%3E)
Hi @J Slack ,
Agree with Andy that it should work with the out of the box config. If his reply was helpful, it would be appreciated that you can accept his post as answer to close this up. If you still need further help on this, feel free to post back with additional information.
If an Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
This should work like that out of the box. Is it not? or is there something else you are looking for?
You can create a custom connector, but typically not required
https://learn.microsoft.com/en-us/exchange/mail-flow/connectors/custom-receive-connectors?view=exchserver-2019#scenario-1-receive-email-from-the-internet
Thanks for this info (sorry, notifications didn't come through).
Unfortunately it looks like it is not working for whatever reason. I guess I need to do some more digging in to this to work out why it is failing.
I did look at the option of adding a second NIC (or IP) and then creating a new connector so I can rename the connector to use the 3rd party cert.
But I think before going down that road, I need to find out what is causing the problem if it SHOULD work.
Cheers