What is the client wanting to encrypt?
hope this is some help
if it's the email whilst in transport I.e the connection between the sending and receiving server. Then this is a server wide setting and requires a valid certificate (which doesn't have to match the individual domain). This is becoming (if not already) the norm. However, it does require both ends to support a common encryption scheme. Also you should check that