272 - Secure Mail relay
S
Steven Holder
The White House has required ALL smtp traffic to be encrypted for US Government entities. It can use TLS or SSL. AVAYA Messaging 'voicemail to email' only supports 'clear text'. Not sure why AVAYA Messaging doesn't do this but IP Office voicemail does. Supposedly Government Agencies don't allow its' use or have to purchase an additional product such as Mutare to comply with this Executive Order requirement.
Chip Powell
This is similar to https://iaug.canny.io/feature-requests/p/194-avaya-messaging-smtp-server-authentication
S
Steven Holder
From my perspective setting up my own smtp relay on the consolidated server is a work around. The best solution is for AVAYA Messaging to be able to do it natively (within the voicemail system). Customers should be able to select TLS just like it configures the port for mail relay to use.
Chip Powell
Steven Holder: Thanks. The team will keep the request open with Avaya.
S
Slade Besson
Submitted to Avaya on 10/27/23
S
Steven Holder
I opened a ticket with AVAYA on this issue. They sent me a document for adding smtp to the Consolidated server. It works and does a starttls when sending to our official smtp relay server.
Chip Powell
Steven Holder: Steven, would you say this resolves the issue? I’m on the team that works with Avaya on these requests, so it sounds like we can pull this one. Thank you!
Chip Powell
We understand that PCI-DSS 4.0 requires this as well.
Tom Lynn
Can you satisfy the requirement by using a microsoft SMTP server running as a relay on the Messaging host? It would listen on port 25 and emails leave the server encrypted. Let us know.
S
Steven Holder
Tom Lynn: According to AVAYA they only support using OAUTH to send directly to O365. This requires read/write access to the users mailbox. It doesn't support email distribution lists. It also requires an advanced AVAYA Messaging license. It requires the use of a CSE server. AVAYA doesn't support the process of adding an smtp relay to the Consolidated server. It should be extremely simple for them to incorporate TLS into AVAYA Messaging. That way it could be selected from the config on AVAYA Messaging. Our government agency won't allow giving the voicemail system read/write access to O365 (Outlook) email. They may not allow us to run smtp mail relay on the Consolidated server. Not sure why they didn't select the simple option of enabling SLS.