Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 1 subscriber
  • Views 3919 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SMTP SSL certificates

cavaughan
We are using ASG120 v.8.306 as the SMTP servers for our two domains. All clients have to authenticate against it to relay mail through it. We have purchased two SSL certificates from NetworkSolutions - one for each domain. Alas, even tech support wasn't much help in figuring out how to properly install them. I was hoping someone has successfully done this before and can provide some instructions.


This thread was automatically locked due to age.
  • 0
    Hi, cavaughan, and welcome to the User BB!

    I'm almost certain that you can't have more than a single SSL certificate used by the SMTP Proxy.  I also don't understand what would be gained by replacing the default certificate, but you can do that in WebAdmin on the 'Advanced' tab of SMTP.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    The reason I need to change the default certificate is that any Outlook client will always get a message when they first send out a message to the affect that the security certificate cannot be verified and you can't add it to the Windows certificate store. You can import it all you want, but it won't be there. The solution would seem to be to install a cert. purchased from a "verified" source. 

    Finally, what we did with Tech support was add the certs I have under Remote Access > Certificate Management > Certificates. That was easy. But the certs do not show up in the TLS Certificates pull down menu under Mail Security > SMTP > Advanced.
  • 0
    Maybe there's a different way to approach this...

    Are these clients "behind" the ASG?  Is your email hosted externally?  Are your Outlook clients fetching it as POP3?  Do you have the POP3 Proxy enabled also?

    For your original question: Have you tried importing the Proxy Signing CA from the Web Filtering section if you have that?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?