Cisco Cisco Email Security Appliance C370D
What’s New in Cisco IronPort AsyncOS 7.1 for Email
14
Release Notes for Cisco IronPort AsyncOS 7.1.5 for Email Release
OL-22161-05
•
Certificate Authorities Management. You can import a custom list of
trusted certificate authorities onto the appliance, as well as disable and export
the default system list.
trusted certificate authorities onto the appliance, as well as disable and export
the default system list.
•
TLS per Listener. You can assign a unique certificate per listener on the
appliance for TLS connections. You can also assign a certificate to the
HTTPS services on an IP interface, the LDAP interface, and all outgoing TLS
connections.
appliance for TLS connections. You can also assign a certificate to the
HTTPS services on an IP interface, the LDAP interface, and all outgoing TLS
connections.
•
Batch Management. You can import and export a Destination Controls
configuration file that defines multiple destination domains using the GUI
and CLI.
configuration file that defines multiple destination domains using the GUI
and CLI.
•
Troubleshooting Tools. AsyncOS 7.1 provides new troubleshooting tools for
TLS:
TLS:
–
The
hoststatus
command has been enhanced to display the reason why
the last outgoing TLS connection failed.
–
The
tlsverify
command has been added to create a TLS connection on
demand. This allows an administrator to pinpoint the exact step a TLS
connection failure occurs.
connection failure occurs.
–
AsyncOS 7.1 records information on why a TLS connection attempt
failed in the mail logs.
failed in the mail logs.
New Feature: Administrative Access Control List
In AsyncOS 7.1, you can control from which IP addresses users access the Email
Security appliance. Users can access the appliance from any machine with an IP
address from an access list you define. You can create the list using the GUI or the
Security appliance. Users can access the appliance from any machine with an IP
address from an access list you define. You can create the list using the GUI or the
adminaccessconfig > ipaccess
command in the CLI.
New Feature: Login Banner
AsyncOS 7.1 allows you to display a customizable message called a “login
banner” when a user attempts to log into the Email Security appliance through
SSH, Telnet, FTP, or Web UI. The login banner appears above the login prompt in
the CLI and to the right of the login prompt in the GUI. The login banner can only
be created using the
banner” when a user attempts to log into the Email Security appliance through
SSH, Telnet, FTP, or Web UI. The login banner appears above the login prompt in
the CLI and to the right of the login prompt in the GUI. The login banner can only
be created using the
adminaccessconfig > banner
command.