You can set up an SMTP server to enable alerts for EMS and endpoint events. When an alert is triggered, EMS sends an email notification to the configured email address(es).
- Go to System Settings > SMTP Server.
- Set the following options:
- Click Save.
When using STARTTLS or SMTPS, the SMTP server presents a certificate to prove its identity. If the server hosting EMS does not have the corresponding CA in its certificate store, EMS cannot trust the SMTP server certificate and the connection fails to establish.
You can verify this using tools on the server hosting EMS to establish a secure connection to the SMTP server. Using openssl as an example, you can run the following from the Windows command line:
openssl s_client -starttls smtp -crlf -connect <smtp_url:port>
The following is an example of an SMTP URL and port: smtp.office365.com:587
The command output displays the certificate that the mail server offers in the first few lines, accompanied by
unable to get local issuer certificate. This indicates that Windows cannot verify the certificate.