Cisco Cisco Email Security Appliance X1050 Guía Del Usuario
27-52
Cisco AsyncOS 9.5 for Email User Guide
Chapter 27 Authenticating SMTP Sessions Using Client Certificates
Overview of Certificates and SMTP Authentication
How to Authenticate a User with a Client Certificate
How to Authenticate a User with an SMTP Authentication LDAP Query
How to Authenticate a User with an LDAP SMTP Authentication Query if the
Client Certificate is Invalid
Client Certificate is Invalid
Table 27-1
How to Authenticate a User with a Client Certificate
Do This
More Info
Step 1
Define a certificate query for your LDAP
server.
server.
Step 2
Create a certificate-based SMTP authentication
profile.
profile.
Step 3
Configure a listener to use the certificate SMTP
authentication profile.
authentication profile.
Step 4
Modify the RELAYED mail flow policy to
require TLS, a client certificate, and SMTP
authentication.
require TLS, a client certificate, and SMTP
authentication.
Table 27-2
How to Authenticate a User with an SMTP Authenticate LDAP Query
Do This
More Info
Step 1
Define an SMTP authentication query for your
server that uses an allowance query string and
Bind for the authentication method.
server that uses an allowance query string and
Bind for the authentication method.
Step 2
Create an LDAP-based SMTP authentication
profile.
profile.
Step 3
Configure a listener to use the LDAP SMTP
authentication profile.
authentication profile.
If the user is not allowed to use LDAP-based SMTP
authentication for their connection, you can select whether
the appliance rejects the connection or temporarily allows
it while logging all activity.
authentication for their connection, you can select whether
the appliance rejects the connection or temporarily allows
it while logging all activity.
Step 4
Modify the RELAYED mail flow policy to
require TLS and SMTP authentication.
require TLS and SMTP authentication.
Table 27-3
How to Authenticate a User with a Client Certificate or an LDAP SMTP Authentication Query
Do This
More Info
Step 1
Define an SMTP authentication query for your
server that uses an allowance query string and
Bind for the authentication method.
server that uses an allowance query string and
Bind for the authentication method.
Step 2
Define a certificate-based query for your LDAP
server.
server.