How to enforce TLS inbound from and outbound to a specific external domain

book

Article ID: 178819

calendar_today

Updated On:

Products

Messaging Gateway

Issue/Introduction

 

Resolution

You need to enforce TLS connections inbound from and outbound to a specific external domain

  1. Add the external domain to Messaging Gateway.
    1. In the control center, go to (Protocols -> Domains).
    2. Click Add Type the domain name (everything after the @ sign) in "Domain or email address"
    3. Uncheck, "
  2. Enable enforcing TLS incoming from this domain.
    1. Check "Reject mail from this domain if not sent using TLS"
  3. Enable enforcing TLS outgoing to this domain.
    1. Click the Delivery tab.
    2. Check ""
    3. Select one of the options below:
      1. "Attempt TLS encryption" (Optional TLS)
      2. "Require TLS encryption and don't verify certificate" (TLS required, but the certificate won't be verified)
      3. "Require TLS encryption and verify certificate" (TLS required and the certificate must be verified)
  4. Scroll to the bottom of the page and click "Save"