Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Email Security Quick-links: ESA Product Support | SMA Product Support | Email Submission and Tracking Portal | Cisco SecurityHub
Current General Deployment (GD) Releases:
ESA: 11.0.0-264 WSA: 10.5.1-296 SMA: 11.0.0-115 Email Plug-in (Reporting): 1.0.1-048 Email Plug-in (Encryption): 1.0.0-036

New Member

TLS Certificate Handling in Cluster Mode

I have two Ironport C370 in a cluster.  When I setup the inbound/outbound mail settings this is done in cluster mode and only lets me associate one cerfiticate to the configuration.  When a session hits the machine that doesn't match the certificate name they get a error unable to validate host name.  Is it possible to set this outside of cluster mode then re-enable?  We are currently on AsyncOS version 8.0.0 build 671.

Thanks,

Mike

Everyone's tags (3)
1 REPLY
New Member

TLS Certificate Handling in Cluster Mode

Hi Mike,

You might find this KB entry #1765 answers your question.

https://ironport.custhelp.com/app/answers/detail/a_id/1765

Basically you have to go into machine mode for each appliance but ensure you use the same certificate profile name.

466
Views
0
Helpful
1
Replies