Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1323
Views
0
Helpful
1
Replies

TLS User Verification / Notification

Mike Luebbers
Level 1
Level 1

‎07-24-2013 01:11 PM

We are about ready to implement TLS and I would like to know if there is a way for our end users to know if they sent a TLS email?  Is there anything that i can setup within ironport that would do this? Basically how can the end user verify that the message they sent or recieved was encrypted with TLS?

Thanks

Labels:
0 Helpful
1 Reply 1

Uwe Schneider
Level 1
Level 1

‎07-29-2013 04:28 AM

Hello,

yes, the user feedback if TLS was spoken or not is decisively for implementing security.

The user can get a feedback from the ESA by adding a footer depend of encryption or not.

Make a HAT and a corresponding MFP with TLS attributes of your choice.

List all incoming TLS partner systems in this HAT, order the HAT.

Place a message filter, which return TRUE, if HAT is true, set a control header with value TRUE or FALSE.

Place this rule.

Make a Content Filter rule, evaluating the Message Filter value and 'add-footer' which is defined by Text Resources.

Set SMTPRoutes, if necessary and of course set Destination Controls with TLS settings of your choice.

You can use verify for authenticating server certificates and from v8 on, you can verify client certificates.

Best Regards,

Uwe.

0 Helpful
Customers Also Viewed These Support Documents