After you ensure each event destination computer in your Change Guardian environment hosts an email server, you can add each email server to Change Guardian.
To configure email servers to Change Guardian running in FIPS mode, perform the following steps.
To add email server to Change Guardian:
Export the certificate from the respective SMTP server site.
Browse to the Sentinel bin directory. The default location is /opt/novell/sentinel/bin.
Import the certificate using the following command: convert_to_fips -i <certificate_path>.
Restart the Change Guardian server using the following command: rcsentinel restart.
Add new email configuration with STARTTLS protocol using Policy Editor.
Create routing rules in Administration Console.
To configure Email servers to Change Guardian running in non-FIPS mode, perform the following steps.
To add email server to Change Guardian:
Export the certificate from the respective SMTP server site.
Import the certificate using the following command: /opt/novell/sentinel/jre/bin/keytool -import -alias <appropriate_alias> -keystore /etc/opt/novell/sentinel/config/.activemqkeystore.jks -file <certificate_file_path> -storepass password.
NOTE:If you have used a custom path for installation, modify the command accordingly.
Restart the Change Guardian server using the following command: rcsentinel restart.
Add new email configuration with STARTTLS protocol using Policy Editor.
Create routing rules in Administration Console.
To add an email server to Change Guardian, perform the following steps.
To add the email server:
In the Policy Editor, select Settings > Email Configuration.
Under Email Servers, click Add.
Specify the name and description of the email server you want to add.
Specify values for the following fields:
SMTP Host. The fully qualified domain name of the email server computer.
SMTP Port. The remote SMTP port to use when communicating with the email server computer.
Secure. Specifies whether the connection to the SMTP computer must be a secure connection. If Yes, specify the protocol type.
If you select No, the SMTP Port will be set to 25 by default.
If you select Yes, the Protocol attribute is displayed.
From The return email address appearing on each email alert for this email server.
Authentication Required Specifies whether the email server requires SMTP authentication to send email. If Yes, specify the following:
User Name The user name to use when connecting to the SMTP server.
Password The password corresponding to the specified SMTP user name.
Protocol Specifies which protocol can be used for the email communication. You can select SSL or STARTTLS.
NOTE:If you select SSL, the SMTP Port value must be set to 465.
If you select STARTTLS, the SMTP Port value must be set to 587.