Messaging Server: Security

NIMS supports SSL (Secure Socket Layer) security. SSL protects the information passed between email clients and the messaging server. SSL does not secure messages leaving your email system. To secure message content, users can use an X.509 client certificate. For more information, consult your client vendor.

Select security options > click Apply to save the settings.

Enable SSL and TLS
Select to configure the messaging server to accept SSL and TLS connections if a trusted certificate has been installed. This option automatically enables your NIMS system to accept SSLv2 and SSLv3 connections, as well as TLS connections on all protocols. This option also enables SMTP to send messages via a secure connection if the receiving SMTP server supports TLS.

Be aware that client certificates are actually workstation-specific, not user-specific. Consequently, if you select Allow X.509 Client Certificates, anyone with access to the workstation will have access to the user's email account. If multiple users are using the same workstation or if a user's workstation is not secure, do not select Allow X.509 Client Certificates.

Automatic authentication through client certificates works with IMAP and WebMail clients, but not with POP clients. The POP protocol cannot give the messaging server the client certificate information. Therefore, users with POP email clients must enter their user names and passwords to the NIMS system even though they have a client certificate.