What I really need from you in order to give you a specific answer, is what the precise need is for your organization. For example, do you need to secure all mail between your different police departments and fire stations, or do you need to secure mail to and from specific people? Chances are it is some of both. Rather than give you a detailed step-by-step, which would be an extremely long answer, I want you to check out the Exchange Server 2003 message security guide.
There are a few Exchange 2003 exclusive references that will not apply to you like S/MIME for OWA and RPC over HTTP. But it is a terrific reference that should have everything you are looking for in it.
Do you have comments on this Ask the Expert Q&A? Let us know.
Related information from SearchExchange.com:
Dig Deeper on Exchange Server setup and troubleshooting
Related Q&A from Richard Luckett
Some folders in a mailbox on Exchange Server 2013 are not showing up on the folder list in the OWA virtual directory but do appear in other views. Continue Reading
We have a Client Access Server and Mailbox Server on Exchange 2013 and we want to install an Edge Transport role on another machine. I joined the ... Continue Reading
How can I enable Outlook Anywhere to allow internal use for all users and external use for only some users in Exchange 2013? Continue Reading