Cisco Cisco Email Security Appliance C190 Release Notes

Centralized Policy, 
Virus, and 
Outbreak 
Quarantines 

The following quarantines can now be collectively centralized on a Security 
Management appliance: 

anti-virus 

outbreak 

Policy quarantines used for messages that are caught by 

message filters 

content filters 

data loss prevention policies 

Centralizing these quarantines offers the following benefits: 

Administrators can manage quarantined messages from multiple Email 
Security appliances in one location. 

Quarantined messages are stored behind the firewall instead of in the DMZ, 
reducing security risk. 

Centralized quarantines can be backed up using the standard backup 
functionality on the Security Management appliance. 

SMTP Session 
Authentication 
Using Client 
Certificates

Supports the use of client certificates to authenticate SMTP sessions between the 
Email Security appliance and users’ mail applications. 

Organizations that require their users to use a Common Access Card (CAC) for 
their mail applications can use this feature to configure the Email Security 
appliance to request a certificate that the CAC and ActivClient middleware 
application then provides to the appliance.

This feature includes the following updates:

A new LDAP query checks the validity of a client certificate in order to 
authenticate an SMTP session between the user’s mail client and the Email 
Security appliance.

An update to the SMTP Authentication LDAP Query that allows the 
appliance to check whether the user’s mail application is allowed to use the 
SMTP AUTH command to connect to the appliance.

Anew Certificate type of SMTP authentication profile.

A new TLS parameter has been added to mail flow policies: Verify Client 
Certificate.

A list of revoked certificates (called a Certificate Revocation List) that the 
appliance checks as part of its certificate verification to make sure that the 
user’s certificate hasn’t been revoked.