- Archiving can be enabled on the mailbox store level
- You cannot remove the deleted items folder from users mailboxes
- You can configure an SMTP filter to limit the emails that come into your organization
- Outlook express sends outgoing messages directly to the SMTP server that is specified in its email account properties
- By default, the SMTP virtual server allows anonymous connections, but does not allow relay to anonymous users. Therefore to allow outlook express users to send mail to the internet, you should instruct them to enable the 'My server requires authentication' option in the 'Outgoing mail server' area on the servers tab of the email account properties sheet.
- Both a SMTP virtual server and SMTP connector can use DNS to route mail, or they can forward all outbound mail to a specific SMTP server (Smart Host)
- If you use SMTP connectors, then you can define one or more address spaces on each connector and assign costs to those address spaces. Costs are numeric values that indicate relative preference among the address spaces
- Each connector can be configured to use a different method to deliver mail
- Can configure the connector to deliver mail according to a schedule
- The function of a SMTP virtual server is to receive messages from mail clients and other SMTP servers and to relay those messages toward their final destination.
- You should not allow unauthorized users from the internet to use your SMTP server to forward their email to destinations outside your organization. Theefore you should configure the server to relay messages only from internal network IP addresses. However you should allow connection from anywhere
- If you configure the SMTP server to use only integrated windows authentication then anonymous mail will not be accepted, therefore internet mail will be blocked unless the users sending can be authenticated
- To be able to encrypt or digitally sign message, users must be issued the appropriate digital certificates.
- Certificates are issued by certification authorities (CA's)
- You can either purchase certificates for all users from a commercial CA or install a private CA on your company network
- An enterprise CA is a CA that is integrated with AD. Only an enterprise CA can be configured for autoenrollment
- Autoenrollment is the process of issuing certificates to users or computers automatically without any manual interaction on the part of the user
- To enable autoenrollment, you should configure the appropriate certificate template, add it to the CA and enable the autoenrollement policy in a domain level group policy object (GPO)
If you implemented a standalone CA, then you would not be able to configure autoenrollment. Stand alone CA's do not support certificate templates which are required for autoenrollment
No comments:
Post a Comment