Cisco Cisco Email Security Appliance X1070 Libro blanco
© 2016 Cisco and/or its affiliates. All rights reserved.
4
•
Outbound TLS
•
HTTPS
•
Lightweight Directory Access Protocol (LDAPS)
Tip:
You can use the same certificate for all four of the services, or you
can use separate certificates for each.
How to Setup SSL Certificates on Cisco Email Security for TLS
Encryption
** Before making any changes, go ahead and backup the Cisco Email
Security configuration from “System Administration -> Configuration File”
Select “Plain passwords in the Configuration Files” as shown in the
above picture.
Now….
•
If you do not have a third-party certificate yet, then start below at
Step #1.
•
If you already have a certificate from a third-party Certificate
Authority, then you can skip to step #3; however, the cert file you
have must be just right. Here are instructions for properly exporting
your existing certificate from IIS.
1. Create Certificate Request: click Network -> Certificates -> Add
Certificate
Fill out the details for the certificate that you want to request from the
third party CA. This should match the type of cert that you purchased.
In this case a wildcard certificate has been requested – “abc.com”.
For a single certificate, you could use something like “mx1abc.com”.
Click Next.
2. Download certificate signing request from Cisco Email Security:
•
On the next screen you will see confirmation details on the certificate
that you added
•
Click “Download Certificate Signing Request” to download the CSR
How-To Secure Communications -
Setting Up Transport Layer Security (TLS)
Cisco Public