Applies to: Exchange Server 2007 SP3, Exchange Server 2007 SP2, Exchange Server 2007 SP1, Exchange Server 2007
Topic Last Modified: 2007-08-22

This topic describes how to use the Exchange Management Console and the Exchange Management Shell to configure Transport Layer Security (TLS) and Secure Sockets Layer (SSL) on the Microsoft Exchange Server 2007 computer that has the Post Office Protocol version 3 (POP3) and Internet Message Access Protocol version 4rev1 (IMAP4) services enabled.

Before You Begin

Before you configure TLS and SSL to help secure POP3 and IMAP4 access, make sure that you understand the process for configuring SSL for the Exchange 2007 server that has the Client Access server role installed. For more information about how to help secure communications, see the following topics:

Managing Client Access Security

Managing SSL for a Client Access Server

How to Install an SSL Certificate on a Client Access Server

Configuring TLS and SSL for POP3 and IMAP4

You can use either the Exchange Management Console or the Exchange Management Shell to configure SSL for POP3 and IMAP4 on an Exchange 2007 Client Access server.

For more information about how to configure SSL for POP3 and IMAP4, see the following topics:

Configuring SSL for POP3 and IMAP4

When you use TLS and SSL for POP3 and IMAP4 access, the Exchange 2007 Client Access server uses the ports listed in the following table to communicate with clients.

Ports for POP3 and IMAP4 access when using SSL

Protocol Default Port

IMAP4/SSL

993 (TCP)

IMAP4 with or without TLS

143 (TCP)

POP3/SSL

995 (TCP)

POP3 with or without TLS

110 (TCP)

By default, the values in this table are used for communicating with clients. You can specify other ports to use with POP3 and IMAP4 clients if you want to disable communication through the default ports. For more information about how to configure ports for Exchange 2007 POP3 and IMAP4 clients, read How to Configure IP Addresses and Ports for POP3 and IMAP4 Access.