Cisco Cisco Email Security Appliance C170 用户指南
19-14
Cisco AsyncOS 9.0 for Email User Guide
Chapter 19 S/MIME Security Services
Verifying, Decrypting, or Decrypting and Verifying Incoming Messages using S/MIME
Note
The import process may take longer if you are importing a file with large number of public keys.
Step 4
Commit your changes.
Enabling S/MIME Decryption and Verification
Procedure
Step 1
Click Mail Policies > Mail Flow Policies.
Step 2
Create a new Mail Flow Policy or modify an existing one. See
Step 3
Scroll down to the Security Features section.
Step 4
Under S/MIME Decryption/Verification, do the following:
•
Enable S/MIME decryption and verification.
•
Choose whether to retain or remove the digital signature from the messages after S/MIME
verification. For triple wrapped messages, only the inner signature is retained or removed.
verification. For triple wrapped messages, only the inner signature is retained or removed.
Step 5
Submit and commit your changes.
Tip
If S/MIME Decryption and Verification is enabled in the Mail Flow Policies, all the S/MIME messages
are delivered irrespective of the status of the decryption and verification. If you want to configure an
action for handling S/MIME Decrypted or Verified Messages, you can use the message filter
rules—
are delivered irrespective of the status of the decryption and verification. If you want to configure an
action for handling S/MIME Decrypted or Verified Messages, you can use the message filter
rules—
smime-gateway-verified
and
smime-gateway
. For more information, see
Configuring an Action for S/MIME Decrypted or Verified Message
After AsyncOS performs S/MIME decryption, verification, or both, you may want to take different
actions depending on the results. You can use the message filter rules—
actions depending on the results. You can use the message filter rules—
smime-gateway-verified
and
smime-gateway
to perform actions on the messages based on the result of decryption, verification, or
both. For more information, see
Note
You can also use the content filter conditions—S/MIME Gateway Message and S/MIME Gateway
Verified to perform actions on the messages based on the result of decryption, verification, or both. For
more information, see
Verified to perform actions on the messages based on the result of decryption, verification, or both. For
more information, see
Example: Quarantine S/MIME Messages that failed Verification, Decryption, or Both
The following message filter checks if the message is an S/MIME message and quarantines it if the
verification or decryption using S/MIME fails.
verification or decryption using S/MIME fails.