PowerProtect Data Manager 19.16 for Cyber Recovery User Guide

PDF

Enabling TLS on Postfix

Enable TLS on Postfix for incoming and outgoing connections.

Steps

  1. If you do not have a self-signed certificate to use for the Postfix service, generate a self-signed certificate by using the openssl command: 
    openssl req -newkey rsa:2048 -nodes -keyout key.pem -x509 -days 365 -out cert.pem

    Ensure that you save the key.pem and the cert.pem files in a secure location.

  2. To enable TLS for incoming connections, add the following lines to the /etc/postfix/main.cf file: 
    smtpd_tls_security_level = encrypt
smtpd_tls_cert_file = cert.pem
smtpd_tls_key_file = $smtp_tls_cert_file

    The incoming connections are from the Cyber Recovery notifications container to the relay server.

  3. To enable TLS for outgoing connections, add the following lines to the /etc/postfix/main.cf file: 
    smtp_tls_security_level = encrypt
smtp_tls_cert_file = cert.pem
smtp_tls_key_file = $smtp_tls_cert_file

    The outgoing connections are from the relay server to the relay host (which you set in step 2c that is shown in Configuring the Postfix email service).

  4. Reload the Postfix configuration file: 
    # postfix reload
  5. Stop and start Postfix: 
    # postfix stop
# postfix start
  6. Optionally, check the Postfix status: 
    # postfix status

Rate this content

Accurate
Useful
Easy to understand
Was this article helpful?
0/3000 characters
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please select whether the article was helpful or not.
  Comments cannot contain these special characters: <>()\