Require TLS to/from a single domain

I am needing to setup "required" TLS sending and receiving Internet email from us to the state.

We use Gwava SMTP appliance and GWIA v 2014. I have SSL on Gwia but not required.

Everything I am finding is all or available but not required for everything.
Is there a way I can "require" TLS to/from just one Internet email domain?

Thx!
Christa

Tags:

  • Am 02.03.2017 um 19:56 schrieb ochschr:
    >
    > I am needing to setup "required" TLS sending and receiving Internet
    > email from us to the state.
    >
    > We use Gwava SMTP appliance and GWIA v 2014. I have SSL on Gwia but not
    > required.
    >
    > Everything I am finding is all or available but not required for
    > everything.
    > Is there a way I can "require" TLS to/from just one Internet email
    > domain?


    You're looking at the wrong place. If you use the Gwava SMTP appliance,
    that is where you need to configure it, as that is what is sending the
    email out finally.

    CU,
    --
    Massimo Rosen
    Micro Focus Knowledge Partner
    No emails please!
    http://www.cfc-it.de

  • Actually, a year or so ago, there was a change to allow outbound auth and/or SSL for outbound connections. It's configured in the gwauth.cfg. The example cfg file is:

    ;------------------------------------------------------------------
    ;
    ; GWIA AUTH configuration file
    ;
    ; domain AuthID password SSL override
    ;
    ; Examples
    ;
    ;Example of just using authentication and not overriding SSL
    ;domainA.com AuthUserID AuthPassword
    ;
    ;
    ;Example of using a wild card prefix, not using authentication and overriding SSL
    ;.domainB.com required
    ;
    ;
    ;Example of using both authentication an overriding SSL
    ;domainC.com AuthUserID AuthPassword disabled
    ;
    ;
    ;Example of overriding SSL for all domains
    ;. required
    ;------------------------------------------------------------------






    --Morris




    >>> Massimo Rosen<mrosenNO@SPAMcfc-it.de> 3/2/2017 2:11 PM >>>



    Am 02.03.2017 um 19:56 schrieb ochschr:


    >



    > I am needing to setup "required" TLS sending and receiving Internet



    > email from us to the state.



    >



    > We use Gwava SMTP appliance and GWIA v 2014. I have SSL on Gwia but not



    > required.



    >



    > Everything I am finding is all or available but not required for



    > everything.



    > Is there a way I can "require" TLS to/from just one Internet email



    > domain?





    You're looking at the wrong place. If you use the Gwava SMTP appliance,

    that is where you need to configure it, as that is what is sending the

    email out finally.




    CU,

    --

    Massimo Rosen

    Micro Focus Knowledge Partner

    No emails please!
    http://www.cfc-it.de
  • Morris,

    Am 06.03.2017 um 17:39 schrieb Morris Blackham:
    > Actually, a year or so ago, there was a change to allow outbound auth and/or
    > SSL for outbound connections. It's configured in the gwauth.cfg. The example
    > cfg file is:
    > ;------------------------------------------------------------------
    > ;
    > ; GWIA AUTH configuration file
    > ;
    > ; domain AuthID password SSL override



    That's good to know. Of course, in his case it's still Gwava that needs
    to do the encryption as it's the last SMTP server.

    ***
    --
    Massimo Rosen
    Micro Focus Knowledge Partner
    No emails please!
    http://www.cfc-it.de

  • oops, missed that detail :>)




    >>> Massimo Rosen<mrosenNO@SPAMcfc-it.de> 3/6/2017 4:40 PM >>>



    Morris,




    Am 06.03.2017 um 17:39 schrieb Morris Blackham:


    > Actually, a year or so ago, there was a change to allow outbound auth and/or



    > SSL for outbound connections. It's configured in the gwauth.cfg. The example



    > cfg file is:



    > ;------------------------------------------------------------------



    > ;



    > ; GWIA AUTH configuration file



    > ;



    > ; domain AuthID password SSL override








    That's good to know. Of course, in his case it's still Gwava that needs

    to do the encryption as it's the last SMTP server.




    ***

    --

    Massimo Rosen

    Micro Focus Knowledge Partner

    No emails please!
    http://www.cfc-it.de
  • Thank you Morris. That's good to know :)
  • Morris, you said about a year ago or so... as long as Im on 2014 am I good, or do I need to be at a certain version?

    I have a ticket open with Gwava, hopefully it can all be limited to one domain at the Gwava level.

    Thx All!
    Christa