Secure Delivery Policies

Document created by user.oxriBaJeN4 Employee on Sep 12, 2015Last modified by user.oxriBaJeN4 Employee on Mar 27, 2017
Version 7Show Document
  • View in full screen mode

Mimecast Secure Delivery uses Transport Layer Security (TLS) technology. This protects confidentiality and data integrity by encrypting connections between servers, thereby ensuring emails are transmitted through an SSL encrypted tunnel. This reduces the risk of eavesdropping, interception, and alteration of emails as they are sent across the internet.

This feature requires a valid, third-party certificate to be installed at each end of the tunnel.


In order to configure and use the Transport Layer Security technology enabled by Mimecast Secure Delivery, you must have an SSL certificate from a Mimecast trusted public root certificate authority installed and configured on the sending and receiving mail servers.

Mimecast supports connections using TLS 1.0, 1,1 and 1.2 for AES-256, RC4, MD5 and AnonDHE.


The Secure Delivery policy is applied when emails are delivered from Mimecast to the receiving mail server. This can be either:

  • Inbound from Mimecast to your organization.
  • Outbound from Mimecast to external recipients.

You can choose to enforce TLS when delivering emails.

What you need

  • An Administrator Console logon with access to the Administration | Gateway | Policies menu item.
  • A previously configured Security Delivery definition.


Creating a policy


To create a policy, follow the instructions in the Creating / Changing a Policy article, but using the following options:


Definition required?


2 people found this helpful