I am having a problem configuring the SMTPS scanning certificate for my appliance. It seems as though the feature is not properly implemented! Let me explain:
Currently, I have a virtual host firewall rule permitting traffic from the WAN zone (public Internet) to a LAN zone. This allows SMTP traffic to my email server. I am trying to enable SMTP/S scanning.
I have a certificate issued by a trusted Certificate Authority which secures my email server. I need to install this certificate on the Cyberoam (which I can); however, I am unable to select this certificate under Anti-Virus > Email > SMTPS Scanning CA. Only Certificate Authorities can be selected! How is someone on the Internet supposed to trust a self-signed CA?
This means that when AV/AS for SMTP/S is enabled for the firewall rule, the self-signed CA (untrusted) is exchanged with the Internet user, and not my email certificate (which is trusted).
This is not an ideal option. Does anyone from Sophos have an explanation for this?
This thread was automatically locked due to age.
