DX Unified Infrastructure Management

Hello All,

Is probe of emailgtw support TLS 1.2?

Many thanks

probe utility shows:
ssl_version: OpenSSL 1.0.1m

------------------------------
Support Engineer
Broadcom
------------------------------

Original Message:
Sent: 07-29-2019 04:09 AM
From: Solomon Melamed
Subject: Is probe of emailgtw support TLS 1.2?

Hello All,

Is probe of emailgtw support TLS 1.2?

Many thanks

How can I switch to version 1.2?
Original Message:
Sent: 07-29-2019 05:50 PM
From: DAVID MICHEL
Subject: Is probe of emailgtw support TLS 1.2?

probe utility shows:
ssl_version: OpenSSL 1.0.1m

------------------------------
Support Engineer
Broadcom

Original Message:
Sent: 07-29-2019 04:09 AM
From: Solomon Melamed
Subject: Is probe of emailgtw support TLS 1.2?

Hello All,

Is probe of emailgtw support TLS 1.2?

Many thanks

I am not seeing anything in the probe docs where 1.2 support was added specifically.
I do know when using TLS you have to import the certificate to the machine where the emailgtw probe is installed.
Did you import the certificate?
Is so are you getting some type of error?

------------------------------
Gene Howard
Principal Support Engineer
Broadcom
------------------------------

Original Message:
Sent: 07-30-2019 07:45 AM
From: Solomon Melamed
Subject: Is probe of emailgtw support TLS 1.2?

How can I switch to version 1.2?
Original Message:
Sent: 07-29-2019 05:50 PM
From: DAVID MICHEL
Subject: Is probe of emailgtw support TLS 1.2?

probe utility shows:
ssl_version: OpenSSL 1.0.1m

------------------------------
Support Engineer
Broadcom

Original Message:
Sent: 07-29-2019 04:09 AM
From: Solomon Melamed
Subject: Is probe of emailgtw support TLS 1.2?

Hello All,

Is probe of emailgtw support TLS 1.2?

Many thanks

Original Message------

I am not seeing anything in the probe docs where 1.2 support was added specifically.
I do know when using TLS you have to import the certificate to the machine where the emailgtw probe is installed.
Did you import the certificate?
Is so are you getting some type of error?

------------------------------
Gene Howard
Principal Support Engineer
Broadcom
------------------------------

I would suggest you test in your dev environment and let us know if you run into a problem

------------------------------
Gene Howard
Principal Support Engineer
Broadcom
------------------------------

Original Message:
Sent: 07-30-2019 11:35 AM
From: Solomon Melamed
Subject: Is probe of emailgtw support TLS 1.2?

A server is in a critical production environment.  I don't want to make any changes before I'm sure it'll work

Sent from my iPhone

Original Message------

I am not seeing anything in the probe docs where 1.2 support was added specifically.
I do know when using TLS you have to import the certificate to the machine where the emailgtw probe is installed.
Did you import the certificate?
Is so are you getting some type of error?

------------------------------
Gene Howard
Principal Support Engineer
Broadcom
------------------------------

Hi 

Some addtional info in general for using TLS with emailgtw from emailgtw docs 

The SMTP certificate must be installed on the host system where the probe is deployed. This is required to use Transport Layer Security (TLS).

The Linux robot where the probe is deployed must have OpenSSL certificate installed to use the TLS functionality to connect to the SMTP server.

https://docops.ca.com/ca-unified-infrastructure-management-probes/ga/en/alphabetical-probe-articles/emailgtw-email-gateway/emailgtw-email-gateway-release-notes#emailgtw(EmailGateway)ReleaseNotes-PreconfigurationRequirements

(Optional) Select Ignore TLS if you do not want the probe to attempt a Transport Layer Security (TLS) connection with the primary and secondary email server. This feature is required because some email servers announce TLS capability even if it is not present, due to a missing certificate.
Default: Not selected

Also can refer

http://blogs.technet.com/b/sbs/archive/2007/04/10/installing-a-self-signed-certificate-as-a-trusted-root-ca-in-windows-vista.aspx
Original Message:
Sent: 07-30-2019 11:35 AM
From: Solomon Melamed
Subject: Is probe of emailgtw support TLS 1.2?

A server is in a critical production environment.  I don't want to make any changes before I'm sure it'll work

Sent from my iPhone

Original Message------

I am not seeing anything in the probe docs where 1.2 support was added specifically.
I do know when using TLS you have to import the certificate to the machine where the emailgtw probe is installed.
Did you import the certificate?
Is so are you getting some type of error?

------------------------------
Gene Howard
Principal Support Engineer
Broadcom
------------------------------

Can anyone confirm where they got the emailgtw to work with TLS 1.2 ??
Original Message:
Sent: 07-30-2019 08:16 PM
From: Franklin D'souza
Subject: Is probe of emailgtw support TLS 1.2?

Hi

Some addtional info in general for using TLS with emailgtw from emailgtw docs

The SMTP certificate must be installed on the host system where the probe is deployed. This is required to use Transport Layer Security (TLS).

The Linux robot where the probe is deployed must have OpenSSL certificate installed to use the TLS functionality to connect to the SMTP server.

https://docops.ca.com/ca-unified-infrastructure-management-probes/ga/en/alphabetical-probe-articles/emailgtw-email-gateway/emailgtw-email-gateway-release-notes#emailgtw(EmailGateway)ReleaseNotes-PreconfigurationRequirements

(Optional) Select Ignore TLS if you do not want the probe to attempt a Transport Layer Security (TLS) connection with the primary and secondary email server. This feature is required because some email servers announce TLS capability even if it is not present, due to a missing certificate.
Default: Not selected

Also can refer

http://blogs.technet.com/b/sbs/archive/2007/04/10/installing-a-self-signed-certificate-as-a-trusted-root-ca-in-windows-vista.aspx
Original Message:
Sent: 07-30-2019 11:35 AM
From: Solomon Melamed
Subject: Is probe of emailgtw support TLS 1.2?

A server is in a critical production environment.  I don't want to make any changes before I'm sure it'll work

Sent from my iPhone

Original Message------

I am not seeing anything in the probe docs where 1.2 support was added specifically.
I do know when using TLS you have to import the certificate to the machine where the emailgtw probe is installed.
Did you import the certificate?
Is so are you getting some type of error?

------------------------------
Gene Howard
Principal Support Engineer
Broadcom
------------------------------