Sven, unless you except an MTA, all email transfers between the Astaro and other mail servers is encrypted with TLS, so no transfers are done in plain text.
I don't think there's a way to have the Astaro autocreate S/MIME certs or PGP keys for a group - I think it is just one at a time.
Cheers - Bob
Sophos UTM Community Moderator Sophos Certified Architect - UTM Sophos Certified Engineer - XG Gold Solution Partner since 2005
Perhaps we should discuss the TLS feature in detail. As far as i know, the implementation of TLS is just opportunistic. If MTAs are not "sure" about their TLS-Certifiactes etc., mail will be transferred in plain text. This gives us a basic security in mail transport. But I wolud not rely on this featrue, if I had to ensure encrypted transmission as there is no way to configure TLS as "mandatory" for certain domains. There is a feature request addressing this. Feel free to vote:
Mail Securty: "require TLS" for certain domains To my opinion, the current TLS implementation is not able to solve Sven's problem.
Perhaps we should discuss the TLS feature in detail. As far as i know, the implementation of TLS is just opportunistic. If MTAs are not "sure" about their TLS-Certifiactes etc., mail will be transferred in plain text. This gives us a basic security in mail transport. But I wolud not rely on this featrue, if I had to ensure encrypted transmission as there is no way to configure TLS as "mandatory" for certain domains. There is a feature request addressing this. Feel free to vote:
Mail Securty: "require TLS" for certain domains To my opinion, the current TLS implementation is not able to solve Sven's problem.
