You have an Exchange Server 2013 organization named contoso.com that contains 10 servers.
Your company purchases a company named Fabrikam, Inc. Fabrikam has an Exchange Server organization named fabrikam.com. All of the email messages sent between the organizations is routed over the Internet.
You need to ensure that the email messages sent from contoso.com to fabrikam.com are encrypted.
What is best way to achieve the goal? More than one answer choice may achieve the goal. Select the BEST answer.
A. Create a Send connector of type Partner.
B. Instruct all of the users in contoso.com to use SMIME.
C. Modify the Authentication settings for the Send connectors in contoso.com.
D. Create a federation trust between the organizations.
Create a Send connector to send email to a partner, with Transport Layer Security (TLS) applied
If you want to ensure secure, encrypted communication with a partner, you can create a Send connector that is configured to enforce Transport Layer Security
(TLS) for messages sent to a partner domain. TLS provides secure communication over the Internet.
See step 2 below.
In the EAC, navigate to Mail flow > Send connectors, and then click Add .
In the New send connector wizard, specify a name for the send connector and then select Partner for the Type. When you select Partner, the connector is
configured to allow connections only to servers that authenticate with TLS certificates. Click Next.
Verify that MX record associated with recipient domain is selected, which specifies that the connector uses the domain name system (DNS) to route mail.
Under Address space, click Add . In the Add domain window, make sure SMTP is listed as the Type.
For Fully Qualified Domain Name (FQDN), enter the name of your partner domain. Click Save.
For Source server, click Add . In the Select a server window, select a Mailbox server that will be used to
send mail to the Internet via the Client Access server and click Add . After you’ve selected the server,
click Add . Click OK.
Not B: We should not depend on the users to set up encryption. We can enforce by configuring the send connection partner setting.
Not C: The authentication setting is not used to set up encrypted e-mail.
Not D: A federation trust is used to share resources in a forest, not to enforce encryption of email.