Cisco Cisco Email Security Appliance C190 Release Notes
4
Release Notes for Cisco AsyncOS 8.0.1 for Email
What’s New
Centralized Policy,
Virus, and
Outbreak
Quarantines
Virus, and
Outbreak
Quarantines
The following quarantines can now be collectively centralized on a Security
Management appliance:
Management appliance:
•
anti-virus
•
outbreak
•
Policy quarantines used for messages that are caught by
–
message filters
–
content filters
–
data loss prevention policies
Centralizing these quarantines offers the following benefits:
•
Administrators can manage quarantined messages from multiple Email
Security appliances in one location.
Security appliances in one location.
•
Quarantined messages are stored behind the firewall instead of in the DMZ,
reducing security risk.
reducing security risk.
•
Centralized quarantines can be backed up using the standard backup
functionality on the Security Management appliance.
functionality on the Security Management appliance.
SMTP Session
Authentication
Using Client
Certificates
Authentication
Using Client
Certificates
Supports the use of client certificates to authenticate SMTP sessions between the
Email Security appliance and users’ mail applications.
Email Security appliance and users’ mail applications.
Organizations that require their users to use a Common Access Card (CAC) for
their mail applications can use this feature to configure the Email Security
appliance to request a certificate that the CAC and ActivClient middleware
application then provides to the appliance.
their mail applications can use this feature to configure the Email Security
appliance to request a certificate that the CAC and ActivClient middleware
application then provides to the appliance.
This feature includes the following updates:
•
A new LDAP query checks the validity of a client certificate in order to
authenticate an SMTP session between the user’s mail client and the Email
Security appliance.
authenticate an SMTP session between the user’s mail client and the Email
Security appliance.
•
An update to the SMTP Authentication LDAP Query that allows the
appliance to check whether the user’s mail application is allowed to use the
SMTP AUTH command to connect to the appliance.
appliance to check whether the user’s mail application is allowed to use the
SMTP AUTH command to connect to the appliance.
•
Anew Certificate type of SMTP authentication profile.
•
A new TLS parameter has been added to mail flow policies: Verify Client
Certificate.
Certificate.
•
A list of revoked certificates (called a Certificate Revocation List) that the
appliance checks as part of its certificate verification to make sure that the
user’s certificate hasn’t been revoked.
appliance checks as part of its certificate verification to make sure that the
user’s certificate hasn’t been revoked.
Feature
Description