Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 1 subscriber
  • Views 2420 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Enforce SSL

mfischer
Hi!

Is it possible to enforce encrypted authentication for SMTP? Our users use Sophos UTM 9.305-4 to send E-Mails via SMTP - and we don't want them to be able to use plaintext authentication.

Thanks, Mike


This thread was automatically locked due to age.
  • 0
    yep it is in the mail protection..smtp..encryption area.

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

  • 0 in reply to William Warren
    I'm sorry, i can't find anything solving my problem there. The SMTP -> Encryption section seems to be entirely concerned with E-Mail encryption.

    I don't want to encrypt E-Mails, I want users that authenticate with their credentials against the SMTP Proxy to be forced to use SSL.
  • 0
    AFAIK no...it seems you are a paid user open a support ticket and ask.  post back with the response i could sit corrected..[:)]

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

  • 0
    Mike why do you want to use UTM authentication to originate emails from your clients? Do you have an internal Exchange or Active Directory server?

    Cheers - Bob

    Sorry for any short responses.  Posted from my iPhone.
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Maybe(!) you can do this via "E-Mail Protection - SMTP - Advanced" under "TLS-Settings" i think... 

    All Hosts (or domains) listet here will be forced to use tls-encryption (auth.).

    I can't try this for now, sorry.
  • 0 in reply to BAlfson
    AFAIK no...it seems you are a paid user open a support ticket and ask.  post back with the response i could sit corrected..[:)]


    If I do that I will let you know the answer.

    Mike why do you want to use UTM authentication to originate emails from your clients? Do you have an internal Exchange or Active Directory server?

    Cheers - Bob


    Inernally we have eDirectory and GroupWise. We had problems when Users used Client -> Groupwise -> Sophos -> External with Sophos quaranting many valid messages as Spam. Therefore a Sophos Partner technician advised us to have our Clients authenticate via Sophos, the way being Client -> Sophos -> External.

    Mike
  • 0
    Mike, I'm not knowledgeable with Groupwise, but I believe that you should ask your reseller to get Sophos Support involved so that you can do things the standard way - users authenticate to and send mail to Groupwise, and then that server sends via the UTM SMTP Proxy. 

    Cheers - Bob

    Sorry for any short responses.  Posted from my iPhone.
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML