Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

ClearPass problem with sending mails with StartTLS

This thread has been viewed 7 times

  • 1.  ClearPass problem with sending mails with StartTLS

    Posted Dec 17, 2018 07:19 PM

    Hi 

     

    It's strange, I try diferent ways and methods but without success

     

    I'm configurng messaging - sending mail for Exchange Server with StartTLS

    I have imported certficate from mail server (it is wiledcasrd) but still got no success

     

    Could not convert socket to TLS

     

    I hve added also Endpoint Contex Server 

     

    Please help, maybe I miss something ?

     

    regards 

     

    Karol

     



  • 2.  RE: ClearPass problem with sending mails with StartTLS

    Posted Dec 18, 2018 03:58 AM

    Ensure you have added any intermediary or root certificates for the mail server certificate to the trusted certificate list.

     

    David



  • 3.  RE: ClearPass problem with sending mails with StartTLS

    Posted Dec 18, 2018 05:13 AM

    Hi david

     

    Thank You for response

     

    I have added already certificate for the mail server

    I have exported it from Web browser and imported it to trusted cert and enabled it. 

    Maybe I should export it in diofferernt way ?

     

    Regards 

     

    Karol



  • 4.  RE: ClearPass problem with sending mails with StartTLS

    MVP EXPERT
    Posted Dec 19, 2018 01:05 AM
    Did you uploaded the required ca-root and intermediate CA certificates to the trust store in ClearPass?


  • 5.  RE: ClearPass problem with sending mails with StartTLS

    Posted Dec 19, 2018 05:07 PM

    Hi

     

    yes, it seems that was done 

    My certificate is wildcard and issued by RapidSSL RSA CA and then by Digicert root CA

    These certificates were already in ClearPass, and I have ensured to enable it.

    Is there any problem with wildcard certs ?

     

    regards

     

    Karol

     



  • 6.  RE: ClearPass problem with sending mails with StartTLS

    Posted Dec 20, 2018 04:45 AM

    I attach configuration of messaging and certificte chain 

     

    regards

     

    karol