Is it possible to selectively enable TLS for individual email addresses on an internal network/domain.
Meaning that i would like all emails that John Smith sends to internal recipients to be encrypted, wherever he is. So it would be based on the sender's address, and not recipient. These emails would be circulating on internal domain only.
Also, as an extended question: is it possible to enable TLS for a geographical location/group which is fixed for that location alone?
I am aware that you can turn on full TLS for all emails, but i'm looking for individual encryption only.