Cisco Cisco Email Security Appliance C160
13
Release Notes for Cisco IronPort AsyncOS 7.1.5 for Email Hot Patch Release
OL-22161-04
What’s New in Cisco IronPort AsyncOS 7.1 for Email
Enhancement: DLP Assessment Wizard
AsyncOS 7.1 provides a browser-based DLP Assessment Wizard to guide you
through the three-step process of configuring popular DLP policies and enabling
them in the default outgoing mail policy.
through the three-step process of configuring popular DLP policies and enabling
them in the default outgoing mail policy.
Enhancement: TLS Enhancements
AsyncOS 7.1 provides a number of enhancements to the TLS features on the
Email Security appliance:
Email Security appliance:
•
Certificates Management. You can use the GUI and CLI to add trusted
public certificates and create a self-signed certificate. You can also use the
appliance to generate a certificate signing request.
public certificates and create a self-signed certificate. You can also use the
appliance to generate a certificate signing request.
•
Certificate Authorities Management. You can import a custom list of
trusted certificate authorities onto the appliance, as well as disable and export
the default system list.
trusted certificate authorities onto the appliance, as well as disable and export
the default system list.
•
TLS per Listener. You can assign a unique certificate per listener on the
appliance for TLS connections. You can also assign a certificate to the
HTTPS services on an IP interface, the LDAP interface, and all outgoing TLS
connections.
appliance for TLS connections. You can also assign a certificate to the
HTTPS services on an IP interface, the LDAP interface, and all outgoing TLS
connections.
•
Batch Management. You can import and export a Destination Controls
configuration file that defines multiple destination domains using the GUI
and CLI.
configuration file that defines multiple destination domains using the GUI
and CLI.
•
Troubleshooting Tools. AsyncOS 7.1 provides new troubleshooting tools for
TLS:
TLS:
–
The
hoststatus
command has been enhanced to display the reason why
the last outgoing TLS connection failed.
–
The
tlsverify
command has been added to create a TLS connection on
demand. This allows an administrator to pinpoint the exact step a TLS
connection failure occurs.
connection failure occurs.
–
AsyncOS 7.1 records information on why a TLS connection attempt
failed in the mail logs.
failed in the mail logs.