Hi, was searching the web for details of how I make my MailEnable server use a secure certificate for SMTP, IMAP and POP. It appears it can, but is unclear exactly what needs to be done on the Server as well the Mail client (like Outlook, do they use same SMTP, POP and IMAP ports as non SSL or use different ports), and those accounts that do not wish to use SSL can they just leave everything the same, without disruption etc. and continue without SSL as if nothing happened. Also, any positive or negative experience using SSL for emails with MailEnable.
If there is a link with a full description that would be great. Thanks
SSL/encryption of Emails
-
- Posts: 116
- Joined: Sat Dec 10, 2005 6:37 pm
- Location: Mexico
- Contact:
SSL/encryption of Emails
Mike May
-
- Site Admin
- Posts: 9738
- Joined: Mon Mar 22, 2004 4:44 am
- Location: Melbourne, Victoria, Australia
Re: SSL/encryption of Emails
Hi,
Start by reviewing this document on how to integrate an SSL certificate within MailEnable:
http://www.mailenable.com/documentation ... ption.html
IMAP: http://www.mailenable.com/documentation ... neral.html
SMTP: http://www.mailenable.com/documentation ... neral.html
POP: http://www.mailenable.com/documentation ... neral.html
You can leave the default ports for IMAP, SMTP and POP and simply add alternative ports for SSL. I.e: IMAP 993, SMTP 465 and POP 995
Start by reviewing this document on how to integrate an SSL certificate within MailEnable:
http://www.mailenable.com/documentation ... ption.html
IMAP: http://www.mailenable.com/documentation ... neral.html
SMTP: http://www.mailenable.com/documentation ... neral.html
POP: http://www.mailenable.com/documentation ... neral.html
You can leave the default ports for IMAP, SMTP and POP and simply add alternative ports for SSL. I.e: IMAP 993, SMTP 465 and POP 995
Regards,
Ian Margarone
MailEnable Support
Ian Margarone
MailEnable Support
-
- Posts: 116
- Joined: Sat Dec 10, 2005 6:37 pm
- Location: Mexico
- Contact:
Re: SSL/encryption of Emails
Hi Ian, Thanks and just to confirm a few things to make sure minimum disruption to existing users:
1) The DNS MX record will need to be changed to the same domain name as an SSL Certificate already purchased e.g. secure.mydomain.com
2) The same certificate is selected under MailEnable Managemnet->Severs->Localhost-> properties -> SSL
3) Under MailEnable Managemnet->Severs->Localhost-> Services and Connectors add the additional Alt Ports for each service: IMAP 993, SMTP 465 and POP 995
4) Add the new IP Address assigned to the SSL certificate at SMTP Properties->Inbound (and keep existing IPs as they are)
5) For MailEnable Outbound IP Binding just keep as is.
6) POP Properties add the new IP Address assigned to the SSL certificate (and keep existing ones)
7) IMAP Properties add the new IP Address assigned to the SSL certificate (and keep existing ones)
Email Client Software (e.g. Outlook etc.) that want to use SSL update the incoming/outgoing mail server to secure.mydomain.com and add those new SSL Server Port Numbers for the IMAP, SMTP and POP3, and also select use SSL/TLS.
Final question, if above is correct, do other users that don't want to use SSL/TLS - and their existing Mail Server name is still valid (e.g. mail.theirdomain.com) they just keep their existing Email Client settings without change and will not be aware of SSL being available (e.g. No security warnings) .
Many thanks
Mike
1) The DNS MX record will need to be changed to the same domain name as an SSL Certificate already purchased e.g. secure.mydomain.com
2) The same certificate is selected under MailEnable Managemnet->Severs->Localhost-> properties -> SSL
3) Under MailEnable Managemnet->Severs->Localhost-> Services and Connectors add the additional Alt Ports for each service: IMAP 993, SMTP 465 and POP 995
4) Add the new IP Address assigned to the SSL certificate at SMTP Properties->Inbound (and keep existing IPs as they are)
5) For MailEnable Outbound IP Binding just keep as is.
6) POP Properties add the new IP Address assigned to the SSL certificate (and keep existing ones)
7) IMAP Properties add the new IP Address assigned to the SSL certificate (and keep existing ones)
Email Client Software (e.g. Outlook etc.) that want to use SSL update the incoming/outgoing mail server to secure.mydomain.com and add those new SSL Server Port Numbers for the IMAP, SMTP and POP3, and also select use SSL/TLS.
Final question, if above is correct, do other users that don't want to use SSL/TLS - and their existing Mail Server name is still valid (e.g. mail.theirdomain.com) they just keep their existing Email Client settings without change and will not be aware of SSL being available (e.g. No security warnings) .
Many thanks
Mike
Mike May
-
- Site Admin
- Posts: 9738
- Joined: Mon Mar 22, 2004 4:44 am
- Location: Melbourne, Victoria, Australia
Re: SSL/encryption of Emails
Hi,
Steps are fine. And yes the clients that are not going to use SSL can leave the same settings providing they are using the same host name still resolves to the same IP.
Steps are fine. And yes the clients that are not going to use SSL can leave the same settings providing they are using the same host name still resolves to the same IP.
Regards,
Ian Margarone
MailEnable Support
Ian Margarone
MailEnable Support