Cisco Cisco Email Security Appliance C190 Guía Del Usuario
22-7
Cisco AsyncOS 8.5.6 for Email User Guide
Chapter 22 Encrypting Communication with Other MTAs
Enabling TLS on a Listener’s HAT
•
Assigning a Certificate to a Public or Private Listener for TLS Connections Using the CLI,
page 22-7
page 22-7
•
•
•
Assigning a Certificate to a Public or Private Listener for TLS Connections
Using the GUI
Using the GUI
Procedure
Step 1
Navigate to the Network > Listeners page.
Step 2
Click the name of the Listener to edit.
Step 3
In the Certificate field, choose a certificate.
Step 4
Submit and commit your changes.
Assigning a Certificate to a Public or Private Listener for TLS Connections
Using the CLI
Using the CLI
Procedure
Step 1
Use the
listenerconfig -> edit
command to choose a listener you want to configure.
Step 2
Use the
certificate
command to see the available certificates.
Step 3
Choose the certificate you want to assign to the listener when prompted.
Step 4
When you are finished configuring the listener, issue the
commit
command to enable the change.
Logging
The Email Security appliance will note in the mail logs instances when TLS is required but could not be
used by the listener. The mail logs will be updated when the following conditions are met:
used by the listener. The mail logs will be updated when the following conditions are met:
•
TLS is set to “required” for a listener.
•
The Email Security appliance has sent a “Must issue a STARTTLS command first” command.
•
The connection is closed without having received any successful recipients.
Information on why the TLS connection failed will be included in the mail logs.