Support secure messaging
Although message security features have been available in Microsoft Exchange since the first version, Exchange Server 2003 increased support for Secure/Multipurpose Internet Mail Extensions (S/MIME) for person-to-person message security.
Microsoft Exchange Server 2007 incorporates several features to enhance the security of your Exchange 2007 organization. By default, communication between Exchange 2007 computers is encrypted. Also by default, Secure Sockets Layer (SSL) is required on all virtual directories, and a self-signed certificate is installed.
S/MIME-based message security in Exchange Server 2003
You can read Understanding Message Security to learn about the core services of Secure/Multipurpose Internet Mail Extensions (S/MIME)-based message security, which are digital signing and message encryption. Digital certificates and public key infrastructure (PKI) make S/MIME possible. S/MIME is not a single product or technology. Rather, a fully functioning S/MIME implementation includes several different components that span multiple technologies.
Message-level security in Exchange Server 2007
Domain Security refers to the set of functionality in Microsoft Exchange Server 2007 and Microsoft Office Outlook 2007 that provides a relatively low-cost alternative to S/MIME or other message-level security solutions. The purpose of the Domain Security feature set is to provide administrators a way to manage secured message paths over the Internet with business partners. After these secured message paths are configured, messages that have successfully traveled over the secured path from an authenticated sender are displayed to users as "Domain Secured" in the Outlook and Outlook Web Access interface.
On this page
- Plan
- Deploy
- Maintain
Plan
- Secure Messaging Learning Paths
- Planning for Exchange Server 2007 Domain Security
- Exchange Server 2007 Permission Considerations
- Planning and Implementing a Split Permissions Model for Exchange Server 2007
- Viewpoint: Messaging Security Challenges and Solutions
- Planning for security and protection in Outlook 2007
- Planning for managing 2007 Office settings with Group Policy
- Planning for Information Rights Management in the Office 2007 system
Deploy
- Deployment Security Checklist
- Configuring Permissions for Exchange Server 2007
- Configuring ISA Server 2006 for Exchange 2007 Client Access
- Configuring Exchange 2007 Authentication for POP3 and IMAP4
- Configuring Exchange 2007 TLS and SSL for POP3 and IMAP4 Access
- Choose a patching strategy for the 2007 Office system
- Implementing and Maintaining Exchange 2003 to Support Message Security
- Improve the Security of Remote Access to Exchange Server 2003 with RPC over HTTP
- Configuring Exchange Server 2003 and VPN Connectivity with ISA Server 2004
Maintain
- Managing Domain Security
- Managing Client Access Security
- Managing Outlook Web Access Security
- Managing Outlook Anywhere Security
- Managing POP3 and IMAP4 Security
- Using ISA Server 2006 with Outlook Web Access