Configuring the Exchange Online Settings for a Shared Address Space with On-Premises Relay Scenario (MX Points to FOPE)
Applies to: Office 365 Enterprise, Live@edu, Forefront Online Protection for Exchange
Topic Last Modified: 2012-07-31
|If you are using Exchange on-premises, we highly recommend that you use the Exchange Deployment Assistant (EDA) to perform your hybrid deployment, rather than performing the manual configuration steps in this topic. By doing so, your Forefront Online Protection for Exchange (FOPE) settings and on-premises Exchange settings are automatically configured. See Shared Address Space with On-Premises Relay Scenario (MX Points to FOPE) for more information about how to perform a hybrid deployment with the EDA.|
To successfully implement this mail-flow scenario, you must create and configure remote domains that instruct the Exchange Online data center servers how to interact with the on-premises mail servers. To accomplish this, on the data center server, you must access Windows PowerShell, where you can create and configure remote domains by entering Windows PowerShell commands. To learn how to install and configure Windows PowerShell and connect to the service, see Use Windows PowerShell.
In the following sample commands, contoso.com is the domain name for the on-premises Exchange server.
Configure your accepted domain for your on-premises domain:
Set-Accepteddomain contoso.com -DomainType InternalRelay -OutboundOnly $true
Note: Ensure that as part of provisioning your Exchange Online mailboxes you have created the shared domain in Exchange Online so that when your cloud mailbox users send mail it appears to come from contoso.com instead of service.contoso.com. If you have not provisioned the shared domain, to learn how, see Manage domains and domain properties.
Create a remote domain that instructs your Exchange Online data center servers how to treat mail arriving from your on-premises domain. Set the DomainName to be the subject of your on-premises certificate:
New-remotedomain -Name contoso.com -DomainName contoso.com
Configure the remote domain from step 2. These settings instruct the data center servers to treat mail between your on-premises server and hosted domain like mail between two users contained in your hosted domain, providing a seamless experience for end users:
Set-remotedomain contoso.com -TrustedMailInboundEnabled $true
Configure each remote domain in the data center. These settings instruct the data center servers to mark outbound mail so that your on-premises servers will route the mail correctly. For example, for the contoso.com remote domain, enter the following command:
Get-RemoteDomain | Set-remotedomain TrustedMailOutboundEnabled $true
For more information about how to use Windows PowerShell commands to configure remote domains, see Remote Domains.
To complete your configuration of the scenario, move on to the next topic, Configuring the FOPE Connectors for a Shared Address Space with On-Premises Relay Scenario (MX Points to FOPE).