TLS Problem with GMail red lock sign

Discussion regarding the Standard version.
Post Reply
mosta2
Posts: 6
Joined: Mon Aug 21, 2017 6:07 pm

TLS Problem with GMail red lock sign

Post by mosta2 »

I have configured mailenable with SSL settings, it is working fine but TLS encryption doesn't seem to be working
I have checked the option SMTP >> Outbound >> Send Using TLS when remote server supports
I am sending and receiving using the SSL ports.
But when sending to Gmail it always shows the red lock alert that means the message does not have TLS encryption.
No idea what could be wrong?

MailEnable-Ian
Site Admin
Posts: 9738
Joined: Mon Mar 22, 2004 4:44 am
Location: Melbourne, Victoria, Australia

Re: TLS Problem with GMail red lock sign

Post by MailEnable-Ian »

Hi,

Inspect the MailEnable SMTP log files and locate the SMTP-OU lines for the SMTP transaction with the Gmail server. Do you see the STARTTLS command being successfully issued with the Gmail server? If not, then it's most likely failing TLS and falling back to non-TLS.
Regards,

Ian Margarone
MailEnable Support

mosta2
Posts: 6
Joined: Mon Aug 21, 2017 6:07 pm

Re: TLS Problem with GMail red lock sign

Post by mosta2 »

Hi Ian,
Thank you for your reply.
I checked the SMTP-OU logs it does not contain STARTTLS commands in any part of its logs,
please advice
Thanks

mosta2
Posts: 6
Joined: Mon Aug 21, 2017 6:07 pm

Re: TLS Problem with GMail red lock sign

Post by mosta2 »

I have ensured the TLS is enabled on the server, editing the registry keys, etc and on IE it shows TLS 1.1 and TLS 1.2 are enabled. And it works with authentication.
Why would the TLS fail with sending Emails, it does not log any error about TLS seems like ignoring this option
Thank you for your support

mosta2
Posts: 6
Joined: Mon Aug 21, 2017 6:07 pm

Re: TLS Problem with GMail red lock sign

Post by mosta2 »

On your documentation it says I should permit user IME_SYSTEM for SSL certs, I don't find this user on the system, is it old documentation or I am missing something ? I have enabled permissiont for IME_Admin and still the problem exists that Mail enable does not use TLS for outbound messages.

MailEnable-Ian
Site Admin
Posts: 9738
Joined: Mon Mar 22, 2004 4:44 am
Location: Melbourne, Victoria, Australia

Re: TLS Problem with GMail red lock sign

Post by MailEnable-Ian »

Hi,

Try and telnet to the Gmail server via a Windows command prompt on the server. When you connect issue the EHLO command. When the server returns the SMTP advertised extensions do see STARTTLS on the list? If not then you may have a proxy that is masking the STARTTLS extension and thus is causing MailEnabel to fall back to non-TLS when sending the Gmail server.
Regards,

Ian Margarone
MailEnable Support

Post Reply