McAfee MAP-3300-SWG Product Guide - Page 84
TLS options (advanced), Connection and Protocol Settings (POP3)
UPC - 731944547008
View all McAfee MAP-3300-SWG manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 84 highlights
Overview of Email features Email Configuration Table 61 Option definitions Option Browse Passphrase to unlock the private key Format Definition Use Browse to locate the file containing your Transport Layer Security certificate and key. Enter the passphrase that you included when you requested the certificate be created. Select either Base-64 encoded certificates and private key, or PKCS#12 secure key file, as applicable. You can also choose to import any CA certificates contained within the file that you import. TLS options (advanced) Use this area to specify the type of ciphers for TLS encryption. Table 62 Option definitions Option Cipher strength Definition Provides a choice of cipher strengths. By default, ciphers with a full range of strengths are supported. If necessary, the range of supported cipher strengths can be limited to 128-bit or greater. Allow no encryption Allow anonymous key exchange If selected, ciphers without encryption are supported. McAfee does not recommend using unencrypted TLS connections, so this setting is disabled by default. If selected, ciphers without authentication are supported. McAfee does not recommend using unauthenticated TLS connections, so this setting is disabled by default. When unauthenticated ciphers are supported, some destination servers might choose these ciphers in preference to authenticated ciphers. Connection and Protocol Settings (POP3) Use this area to specify settings for the POP3 protocol such as port numbers and time-outs. Email | Email Configuration | Protocol Configuration | Connection and Protocol Settings (POP3) Optionally specify periods when some parts of the network will not be scanned. Before turning off scanning of any traffic, consider the security risks. The most secure option is to scan all traffic. If an appliance is operating in a transparent mode, use this feature to exclude some parts of the network from scanning traffic in a protocol during specific periods. You might need to do this if you regularly move many large files through the appliance. Changing these settings can affect scanning performance. If you are not sure about the impact of making any changes, ask your network expert. 84 McAfee Email and Web Security Appliances 5.6.0 Product Guide