Dovetail Carrier and TLS / SSL
As of version 2.8, Dovetail Carrier supports SSL and TLS 1.2 when connecting to email servers, including via SMTP, POP3, and IMAP.
CarrierEmailAccounts Config Settings - POP3 and IMAP
The accounts within the CarrierEmailAccounts section of the DovetailCarrierService.exe.config file are the polling accounts - the accounts that Carrier will poll looking for new mail.
These are POP3 and/or IMAP accounts.
There are a few config settings that are relevant here:
usesecureconnectionsslmodeport
usesecureconnection
If you wish to connect via TLS or SSL, this setting must be set to true
sslmode
This setting specifies in which way the email component should switch the connection into TLS/SSL mode.
There are 4 available options here.
Manual
Typically not used.OnConnect
The entire conversation with the mail server will take place under TLS/SSL layer. Typically on a dedicated TLS/SSL port (usually, 465 for SMTP, 995 for POP3, and 993 for IMAP4).StartTls
Carrier will automatically call StartTls method when appropriate (prior to login for POP3/IMAP4, prior to hello for SMTP). No dedicated SSL/TLS port is required (the connection should be made to the regular SMTP, POP3, or IMAP4 port). Also, some SMTP servers use the special port 587 for StartTLS. StartTLS approach provides the same security level as OnConnect. However, the mail server must support STARTTLS (STLS for POP3).StartTlsIfSupported
Similar to StartTls but does not require the server support STARTTLS. If the server supports STARTTLS, Carrier will use it. If STARTTLS is not supported, Carrier will not issue this command and the entire session will not be SSL-encrypted.
port
This is the communication port on the email server to connect to.
Typically, this would be set to 995 for POP, and 993 for IMAP.
Common Configurations
POP3 on Port 995, using OnConnect
<
pop3Account
host=
"myEmailServer"
port=
"995"
username=
"support@mycompany.com"
password=
"myPassword"
timeoutinseconds=
"30"
usesecureconnection=
"true"
authenticationmode=
"Automatic"
sslmode=
"OnConnect"
/>
GMail - POP3
Gmail supports SSL on Port 995
<
pop3Account
host=
"pop.gmail.com"
port=
"995"
username=
"myaccount@mycompany.com"
password=
"mypassword"
timeoutinseconds=
"30"
usesecureconnection=
"true"
authenticationmode=
"Automatic"
sslmode=
"StartTls"
/>
GMail - IMAP
Gmail supports SSL on Port 993
<
imapAccount
host=
"imap.gmail.com"
port=
"993"
username=
"myaccount@mycompany.com"
password=
"myPassword"
emailFolder=
"INBOX"
timeoutinseconds=
"30"
authenticationmode=
"Automatic"
usesecureconnection=
"true"
sslmode=
"OnConnect"
/>
Microsoft Office365 - POP3
Office365 supports SSL on port 995
<
pop3Account
host=
"outlook.office365.com"
port=
"995"
username=
"myaccount@mycompany.com"
password=
"mypassword"
timeoutinseconds=
"30"
usesecureconnection=
"true"
authenticationmode=
"Automatic"
sslmode=
"OnConnect"
/>
Microsoft Office365 -IMAP
Office365 supports IMAP with SSL on port 993
<
imapAccount
host=
"outlook.office365.com"
port=
"993"
username=
"myaccount@mycompany.com"
password=
"mypassword"
emailFolder=
"INBOX"
timeoutinseconds=
"30"
usesecureconnection=
"true"
authenticationmode=
"Automatic"
sslmode=
"OnConnect"
/>
appSettings - EmailServiceSettings
The EmailServiceSettings control the outgoing (SMTP) email connection information.
Similar to the POP3/IMAP settings, the SMTP email settings can also be configured to use SSL / TLS
There are a few config settings that are relevant here:
EmailServiceSettings.SmtpEnableSslEmailServiceSettings.SmtpSslModeEmailServiceSettings.SmtpPort
The specific names may be different that the POP3/IMAP settings, but they are similar, and function in the same way.
Common Configurations
SSL/TLS on Port 465, using OnConnect
<
add key=
"EmailServiceSettings.SmtpEnableSsl"
value=
"true" />
<
add key=
"EmailServiceSettings.SmtpPort"
value=
"465" />
<
add key=
"EmailServiceSettings.SmtpSslMode"
value=
"OnConnect" />
TLS on Port 587, using STARTTLS
<
add key=
"EmailServiceSettings.SmtpEnableSsl"
value=
"true" />
<
add key=
"EmailServiceSettings.SmtpPort"
value=
"587" />
<
add key=
"EmailServiceSettings.SmtpSslMode"
value=
"UseStartTls" />
GMail
Gmail supports SSL on Port 465, and STARTTLS on port 587
<
add key=
"EmailServiceSettings.SmtpHostAddress"
value=
"smtp.gmail.com" />
<
add key=
"EmailServiceSettings.SmtpEnableSsl"
value=
"true" />
<
add key=
"EmailServiceSettings.SmtpSslMode"
value=
"StartTls" />
<
add key=
"EmailServiceSettings.SmtpAccountName"
value=
"myaccount@mycompany.com" />
<
add key=
"EmailServiceSettings.SmtpAccountPassword"
value=
"myPassword" />
<
add key=
"EmailServiceSettings.SmtpPort"
value=
"587" />
Microsoft Office365
Office365 supports STARTTLS on port 587
<
add key=
"EmailServiceSettings.SmtpHostAddress"
value=
"smtp.office365.com" />
<
add key=
"EmailServiceSettings.SmtpEnableSsl"
value=
"true" />
<
add key=
"EmailServiceSettings.SmtpSslMode"
value=
"StartTls" />
<
add key=
"EmailServiceSettings.SmtpAccountName"
value=
"myaccount@mycompany.com" />
<
add key=
"EmailServiceSettings.SmtpAccountPassword"
value=
"myPassword" />
<
add key=
"EmailServiceSettings.SmtpPort"
value=
"587" />