Configuring encrypted email - Metasys - LIT-12013352 - M4-SNE10500-0 - M4-SNE10501-0 - M4-SNE11000-0 - M4-SNE11001-0 - M4-SNE110L0-0 - M4-SNE110L1-0 - M4-SNE22000-0 - M4-SNE22001-0 - Supervisory Device - SNE10 Network Engine - SNE11 Network Engine - SNE22 Network Engine - SNE Supervisory Network Engine - 12.0

SNE Commissioning Guide

Product name
SNE10 Network Engine
SNE11 Network Engine
SNE22 Network Engine
SNE Supervisory Network Engine
Document type
Commissioning Guide
Document number
Revision date
Product status

By default, Metasys software encrypts your user name and password as they are entered into the SMP UI, but the software does not automatically encrypt email messages. This feature allows embedded and server machines to send email to email servers over a secure channel (secure socket layer [SSL]). The entire email payload is encrypted, and allows our software to communicate to email servers that require SSL connections.

Consider these points when using email encryption:
  • The SMTP port is different when using secure socket layer connections. This port is typically 465.
  • Server-class machines and embedded devices do not have the same list of trusted Certificate Authorities. An embedded device may not trust a certificate that is trusted on a server-class machine. To increase the chances of an embedded device trusting a certificate used by a server-class machine, have the certificate signed by a major authority.
  • To maximize efficiency when using this feature, set up mailing groups instead of individual users in the destination field to minimize the number of users to which the machine has to send email. This setup allows you to create different email groups and customize the type of messages that each user receives.
  • To increase the chance of an embedded device or an ADS/ADX trusting the certificate the mail server uses, ensure the signed certificate is obtained by a major certificate authority.

  • If you are using an embedded device as your site director, no option is available to update the Trusted Certificate Authority list at this time.
  • To ensure you have the latest list of Trusted Certificate Authorities installed on your ADS/ADX, install any available certificate updates from Microsoft Windows Update.