I have a SG330 running 9.311-3. My general network configuration is WAN <-> Cisco ASA <-> SG330 (bridgemode) <-> LAN <-> Exchange Server, Active Directory, ETC.
We use the email (relaying to internal exchange), web (standard w/ AD groups), and firewall protection. We'd like to start using the SPX encrypted email function WITH reply portal and recipient password creation, but I'm lost in the certificate jungle.
To make things difficult, we have a .local domain. I inherited this, go easy on me. Layout picture:
So, obviously if I forward the spx port (10444) to secure.company.org then a person can make it through to our SPX portal from the outside world. They get a certificate error, also obvious. SPX portal presents the webadmin certificate (Management -> WebAdmin Settings -> HTTPS)? How would you approach setting this up?
I'm thinking the easiest may be to change the sg hostname to secure.company.org (currently .local), use a wildcard cert in webadmin (*.company.org) and all should be good?
This thread was automatically locked due to age.
