Enabling opportunistic TLS for all delivery in Messaging Gateway
TLS delivery for all email being delivered is needed in the Symantec Messaging Gateway.
Adminstration > Hosts > Configuration
in the SMG GUI.
Select the host you want to enable, and click
Go to the
button at the bottom of the page.
Attempt TLS encryption for delivery of all messages
If you have a specific certificate you wish to use, check
Offer TLS client certificate
, and select the certificate in the dropdown.
to commit the changes.
Repeat for each SMG scanner.
These steps will make all email sent by the SMG to offer TLS.
If you are accepting email for multiple domains, then also follow the instructions listed in
How to enforce TLS inbound from and outbound to a specific domain
to ensure that each domain is offering or not.