User Guide
Contents
xx
AsyncOS 9.1.2 for Cisco Email Security Appliances User Guide
Configuring AsyncOS for SMTP Authentication 25-32
Configuring SMTP Authentication 25-33
Configuring an SMTP Authentication Query 25-34
SMTP Authentication via Second SMTP Server (SMTP Auth with Forwarding) 25-35
SMTP Authentication with LDAP 25-36
Authenticating SMTP Sessions Using Client Certificates 25-39
Outgoing SMTP Authentication 25-39
Logging and SMTP Authentication 25-40
Configuring External LDAP Authentication for Users 25-40
User Accounts Query 25-41
Group Membership Queries 25-41
Authenticating End-Users of the Spam Quarantine 25-43
Sample Active Directory End-User Authentication Settings 25-43
Sample OpenLDAP End-User Authentication Settings 25-44
Spam Quarantine Alias Consolidation Queries 25-44
Sample Active Directory Alias Consolidation Settings 25-45
Sample OpenLDAP Alias Consolidation Settings 25-45
Identifying a Sender’s User Distinguished Name for RSA Enterprise Manager 25-45
Sample User Distinguished Name Settings 25-46
Configuring AsyncOS To Work With Multiple LDAP Servers 25-46
Testing Servers and Queries 25-47
Failover 25-47
Load Balancing 25-48
CHAPTER
26 Authenticating SMTP Sessions Using Client Certificates 26-49
Overview of Certificates and SMTP Authentication 26-49
How to Authenticate a User with a Client Certificate 26-50
How to Authenticate a User with an SMTP Authentication LDAP Query 26-50
How to Authenticate a User with an LDAP SMTP Authentication Query if the Client Certificate is
Invalid
26-50
Checking the Validity of a Client Certificate 26-51
Authenticating a User Using an LDAP Directory 26-52
Authenticating an SMTP Connection Over TLS Using a Client Certificate 26-52
Establishing a TLS Connection from the Appliance 26-53
Updating a List of Revoked Certificates 26-54
CHAPTER
27 FIPS Management 27-1
FIPS Management Overview 27-1