I have configured mailenable with SSL settings, it is working fine but TLS encryption doesn't seem to be working
I have checked the option SMTP >> Outbound >> Send Using TLS when remote server supports
I am sending and receiving using the SSL ports.
But when sending to Gmail it always shows the red lock alert that means the message does not have TLS encryption.
No idea what could be wrong?
TLS Problem with GMail red lock sign
-
- Site Admin
- Posts: 9738
- Joined: Mon Mar 22, 2004 4:44 am
- Location: Melbourne, Victoria, Australia
Re: TLS Problem with GMail red lock sign
Hi,
Inspect the MailEnable SMTP log files and locate the SMTP-OU lines for the SMTP transaction with the Gmail server. Do you see the STARTTLS command being successfully issued with the Gmail server? If not, then it's most likely failing TLS and falling back to non-TLS.
Inspect the MailEnable SMTP log files and locate the SMTP-OU lines for the SMTP transaction with the Gmail server. Do you see the STARTTLS command being successfully issued with the Gmail server? If not, then it's most likely failing TLS and falling back to non-TLS.
Regards,
Ian Margarone
MailEnable Support
Ian Margarone
MailEnable Support
Re: TLS Problem with GMail red lock sign
Hi Ian,
Thank you for your reply.
I checked the SMTP-OU logs it does not contain STARTTLS commands in any part of its logs,
please advice
Thanks
Thank you for your reply.
I checked the SMTP-OU logs it does not contain STARTTLS commands in any part of its logs,
please advice
Thanks
Re: TLS Problem with GMail red lock sign
I have ensured the TLS is enabled on the server, editing the registry keys, etc and on IE it shows TLS 1.1 and TLS 1.2 are enabled. And it works with authentication.
Why would the TLS fail with sending Emails, it does not log any error about TLS seems like ignoring this option
Thank you for your support
Why would the TLS fail with sending Emails, it does not log any error about TLS seems like ignoring this option
Thank you for your support
Re: TLS Problem with GMail red lock sign
On your documentation it says I should permit user IME_SYSTEM for SSL certs, I don't find this user on the system, is it old documentation or I am missing something ? I have enabled permissiont for IME_Admin and still the problem exists that Mail enable does not use TLS for outbound messages.
-
- Site Admin
- Posts: 9738
- Joined: Mon Mar 22, 2004 4:44 am
- Location: Melbourne, Victoria, Australia
Re: TLS Problem with GMail red lock sign
Hi,
Try and telnet to the Gmail server via a Windows command prompt on the server. When you connect issue the EHLO command. When the server returns the SMTP advertised extensions do see STARTTLS on the list? If not then you may have a proxy that is masking the STARTTLS extension and thus is causing MailEnabel to fall back to non-TLS when sending the Gmail server.
Try and telnet to the Gmail server via a Windows command prompt on the server. When you connect issue the EHLO command. When the server returns the SMTP advertised extensions do see STARTTLS on the list? If not then you may have a proxy that is masking the STARTTLS extension and thus is causing MailEnabel to fall back to non-TLS when sending the Gmail server.
Regards,
Ian Margarone
MailEnable Support
Ian Margarone
MailEnable Support