Encrypting Email Communication with STARTTLS

It is important to configure your email server to use encryption when sending or receiving emails, which prevents unauthorized access to your messages. Encryption is achieved by using SSL/TLS. Many SMTP servers support a feature called STARTTLS, which upgrades an existing clear connection into a secure encrypted channel.

STARTTLS Outbound

Outbound messages are automatically encrypted in Xeams, provided the receiving end supports STARTTLS. No additional steps are required to use encryption.

STARTTLS Inbound

A few steps are required before TLS is enabled when receiving inbound emails. These steps are as follows:

• An SSL certificate must be created. Although Xeams will automatically download a self-signed certificate when SSL is enabled, it is strongly recommended that you purchase a valid certificate from a certificate authority that will be trusted on the Internet. Click here for instructions on how to create a certificate
• You must enable HTTPS before using STARTTLS. To enable HTTPS, click Server Configuration and specify a port for HTTPS. It can be any number higher than 0. The default port for HTTPS is 443
• Finally, enable STARTTLS using the following steps:
  • Go to Server Configuration/SMTP Configuration, and check Enable STARTTLS.
  • Save

Steps To Confirm if Encryption Is Used

• Click Message Respository/View All Good
• Check the color of the status delivery icons. Refer to the image below.
  
• If the color of these icons are green, encryption was used for delivery.

Click here for more information about status icons.