Using enforced TLS for outbound mail

If your organization is required to use TLS for email sent to recipients in specific domains, you can configure outbound email to ensure that TLS (Transport Layer Security) is used for those domains. Enforced TLS forces a secure connection between both the sending and receiving domains. If a secure connection cannot be established, the mail is not sent.

About this task

When you configure enforced TLS for specific Internet domains, then SmartCloud Notes® ensures that TLS is used for outbound email. If TLS cannot be used to deliver mail to these domains, the email is not delivered and a non-delivery report is returned to the sender. The reason for the delivery failure indicates the Remote server does not support TLS.

Note: If you are using a company-controlled SMTP server to deliver your outbound email, then all outbound mail is routed through that server. And any domains listed here will be ignored. If you have certain domains for which you want to enforce TLS, then instead of using SMTP for your outbound mail, use these steps to enforce TLS and to specify the domains.

Procedure

Log on to the service as an administrator.
If your account also has the User role, click Admin > Manage Organization.
In the System Settings section of the navigation pane, click IBM SmartCloud Notes.
Click Account Settings > Email Management.
In the Enforce TLS section, enter the names of Internet domains for which you want to enforce TLS compliance when sending outbound mail to them. Enter each domain on a separate line. Wildcards are allowed in the domain names.
For example, to ensure that all mail going to renovations.com is sent using enforced TLS, enter *@renovations.com. Alternatively, you can add specific email addresses such as sdaryn@renovations.com.
Click Save.