Cisco Cisco Email Security Appliance X1050 Guía Del Usuario
27-40
User Guide for AsyncOS 10.0 for Cisco Email Security Appliances
Chapter 27 LDAP Queries
Configuring AsyncOS for SMTP Authentication
Outgoing SMTP Authentication
SMTP Authentication can also be used to provide validation for an outbound mail relay, using a
username and passphrase. Create an ‘outgoing’ SMTP authentication profile and then attach the profile
to an SMTP route for the ALL domain. On each mail delivery attempt, the appliance will log on to the
upstream mail relay with the necessary credentials. SMTP authentication supports the following
authorization protocols: PLAIN and LOGIN.
username and passphrase. Create an ‘outgoing’ SMTP authentication profile and then attach the profile
to an SMTP route for the ALL domain. On each mail delivery attempt, the appliance will log on to the
upstream mail relay with the necessary credentials. SMTP authentication supports the following
authorization protocols: PLAIN and LOGIN.
Procedure
Step 1
Create an outgoing SMTP authentication profile.
1.
Choose Network > SMTP Authentication.
2.
Click Add Profile.
3.
Enter a unique name for the SMTP authentication profile.
4.
For the Profile Type, select Outgoing.
5.
Click Next.
6.
Enter an authentication username and passphrase for the authentication profile.
7.
Click Finish.
Step 2
Configure SMPT routes to use the outgoing SMTP authentication profile that you created in
.
1.
Choose Network > SMTP Routes.
2.
Click the All Other Domains link in the Receiving Domain column of the table.
3.
Enter the name of the Destination Host for the SMTP route. This is the hostname of your external
mail relay used to deliver outgoing mail.
mail relay used to deliver outgoing mail.
4.
Select the outgoing SMTP authentication profile from the drop-down menu.
5.
Submit and commit your changes.
Step 3
Enable SMTP authentication in the Mail Flow Policy.
1.
Choose Mail Policies > Mail Flow Policies.
2.
Select the intended outbound listener.
3.
Click Default Policy Parameters and scroll down to the Security Features > Encryption and
Authentication section.
Authentication section.
4.
Select Required for SMTP Authentication.
5.
Submit and commit your changes.
Logging and SMTP Authentication
The following events will be logged in the mail logs when the SMTP Authentication mechanism (either
LDAP-based, SMTP forwarding server based, or SMTP outgoing) is configured on the appliance:
LDAP-based, SMTP forwarding server based, or SMTP outgoing) is configured on the appliance:
•
[Informational] Successful SMTP Authentication attempts — including the user authenticated and
the mechanism used. (No plaintext passphrases will be logged.)
the mechanism used. (No plaintext passphrases will be logged.)