Cisco Cisco Email Security Appliance C650 Guía Del Usuario
Chapter 12 Cisco IronPortEmail Encryption
12-2
Cisco IronPort AsyncOS 7.5 for Email Configuration Guide
OL-25136-01
Note
You can also set up the appliance to first attempt to send a message over a TLS
connection before encrypting it. For more information, see
connection before encrypting it. For more information, see
To configure outbound email encryption on the Email Security appliance,
complete the following steps:
complete the following steps:
Step 1
If you want to use a local key server, configure the Cisco IronPort Encryption
appliance. For instructions on configuring key servers, see the IronPort
Encryption Appliance Local Key Server User Guide.
appliance. For instructions on configuring key servers, see the IronPort
Encryption Appliance Local Key Server User Guide.
Step 2
Configure an encryption profile. For instructions on configuring the encryption
profile, see
profile, see
Step 3
If you want to use the hosted key service, create a Cisco Registered Envelope
Service corporate account. You create the account by clicking the Provision
button after configuring an encryption profile.
Service corporate account. You create the account by clicking the Provision
button after configuring an encryption profile.
Step 4
Configure an outgoing content filter. You need to configure a content filter to
tag the outbound emails that should be encrypted. For instructions on creating the
content filter, see
tag the outbound emails that should be encrypted. For instructions on creating the
content filter, see
.
The following web browsers are supported:
•
Microsoft® Internet Explorer 7 (Windows XP and Vista)
•
Microsoft® Internet Explorer 8 (Windows XP and Vista)
•
Firefox 3.0 and 3.5
•
Safari 4.0 (Mac OS X)
Encryption Workflow
When using email encryption, the Cisco IronPort Email Security appliance
encrypts a message and stores the message key on a local key server or a hosted
key service. When the recipient opens an encrypted message, the recipient is
authenticated by the key service, and the decrypted message is displayed.
encrypts a message and stores the message key on a local key server or a hosted
key service. When the recipient opens an encrypted message, the recipient is
authenticated by the key service, and the decrypted message is displayed.