Configure SSL for an email endpoint

You can configure POP3, IMAP, or SMTP to use Secure Sockets Layer (SSL) for an email endpoint.

  1. On the email server, enable SSL for POP3, IMAP, or SMTP according to the manufacturer’s documentation.

  2. Export a client certificate from the email server.

  3. Use the keytool program to import the client certificate file to the application server’s Java Virtual Machine (JVM) certificate store. The procedure for this step will depend on the JVM and client installation paths.

    For example, if you are using a default Oracle WebLogic Server installation with JDK 1.5.0 on Microsoft Windows Server® 2003, type the following text in a command prompt:

    keytool -import -file client_certificate -alias myalias -keystore BEA_HOME\jdk150_04\jre\security\cacerts

  4. When prompted, enter the password (for Java, the default password is changeit). You will receive a message stating that the certificate was imported successfully.

  5. Use Administration Console to add the email endpoint to the service.

  6. Create the email endpoint in Administration Console. When configuring the endpoint settings, select POP3/IMAP SSL Enabled for incoming messages and SMTP SSL Enabled for outgoing messages, and change the port properties accordingly.

Tip: If you experience problems when using SSL, use an email client such as Microsoft Outlook to check whether it can access the email server using SSL. If the email client cannot access the email server, the issue is related to the configuration of either your certificate or your email server.

// Ethnio survey code removed