Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
689
Views
0
Helpful
1
Replies

OutboundTLS Required but RSA encyption if it can't

Mankney31
Level 1
Level 1

‎11-21-2014 10:34 AM

Hello, can we configure the Ironport to require all outbound connections to be TLS and if it cannot use TLS because the receiving host does not have it then it will send using the RSA encryption product inside of IronPort?

I can see where I can change the default destination control to require TLS but in that case it will simply not deliver it if TLS is not available. How can I require TLS but if it cannot do TLS then encrypt it?

 

Any help is appreciated.

 

Thanks

Labels:
0 Helpful
1 Reply 1

Ken Stieers
VIP
VIP

‎11-21-2014 10:49 AM

There may be better ways (maybe a message filter??), but the easiest I see is to create an outgoing conent filter that catches all mail, and then setting the action to "Encrypt on Delivery". That action has the option to try TLS and use the encryption profile configured if TLS fails.

This option uses CRES, or your Ironport Encryption Appliance... its not the simplest solution...

 

0 Helpful
Customers Also Viewed These Support Documents