Products: IMail Express, IMail Server Plus, IMail Server, IMail Server Premium

Failing PCI Audits due to low SSL cipher strength

« Go Back

Information

 
Description
During a recent PCI audit, it was discovered that IMail's SSL allows cipher strengths that do no meet the 128bit requirements for PCI compliance.  Is it possible to configure IMail to only allow 128bit or higher cipher strength?
Solution
Yes, you can ensure that IMail requires 128bit or higher cipher strength using the following steps:
  1. Open the IMail SSL Configuration Utility. This utility is located in the IMail Program group under the Start Menu.
  2. Select the "Options" tab and enable the "Force Clients to use 128bit SSL" option.
  3. Click "Apply" and then close the SSL Configuration Utility.
  4. Stop and Restart any IMail services that use SSL.

Your IMail server should now only allow 128bit cipher strengths.

VersionAll Versions
Attachment 

 
Customer Service Softwaresalesforce.comHome | Product