How to apply enforced encryption between you and Symantec
search cancel

How to apply enforced encryption between you and Symantec

book

Article ID: 179106

calendar_today

Updated On:

Products

Email Security.cloud

Issue/Introduction

 Step-by-step procedures on how to enforce encryption between your organisation and Symantec infrastructure. 

Environment

Symantec Email Security.cloud

Resolution

Problem

You need to enable TLS enforcement inbound and outbound between your domains and the Symantec Email Security.Cloud service.

Solution

To achieve TLS enforcement for outbound mails between your domain/s and Symantec, do the following:

  • Log into https://clients.messagelabs.net
  • Navigate to Services > Email Services > Encryption
  • On the TLS Enforcements tab, select the domain you wish to have TLS enforced.
  • Underneath the 'TLS Enforcements between you and the Email Security Services' section, check the 'Always enforce TLS outbound from my domain to the Email Security Services infrastructure'.

  • Click OK on the pop-up box.
  • Scroll to the bottom of the page and click 'Save'. After a short propagation period, all outbound emails for the selected domain will have TLS enforcement applied.

All outbound mails from the selected domain will now only be accepted if they are sent using TLS encryption. Anything sent from the domain outbound that is not encrypted with TLS will be rejected.

Once accepted by the Email Security.Cloud infrastructure, we will attempt to deliver the mail opportunistically to the intended third-party recipient. If the receiving infrastructure does not support TLS, then we will deliver the mail via SMTP

 

To achieve TLS enforcement for inbound mails between your domain/s and Symantec, do the following:

  • Log into https://clients.messagelabs.net
  • Navigate to Services > Email Services > Encryption
  • On the TLS Enforcements tab, select the domain you wish to have TLS enforced.
  • Under the 'TLS inbound mail server test' section Click on Test. 

  • This will run a test to ensure that your domain can receive mail via TLS connection from the Email Security service. Note: If the test fails, enforcing TLS for inbound mail to your domain WILL result in mail failure.
  • You will be prompted with the test results, which will show whether TLS connections passed, failed, or triggered a connectivity test warning. Click OK.
  • If you are happy to proceed under the 'TLS Enforcements between you and the Email Security Services' section, check the 'Always enforce TLS inbound from the Email Security Services infrastructure to my domain'.

  • Click OK on the pop-up box.
  • Scroll to the bottom of the page and click 'Save'. After a short propagation period, all inbound emails for the selected domain will have TLS enforcement applied.

 

Powered by Wolken Software