Mimecast Browser Support Matrix

Document created by user.oxriBaJeN4 Employee on Sep 16, 2015Last modified by user.oxriBaJeN4 Employee on Dec 12, 2017
Version 20Show Document
  • View in full screen mode

This article outlines the supported environments framework for Mimecast end user applications and administrative portals, as well as Large File Send access key generation pages.

 

Browser Support Matrix

 

Browser
Administration Console *
Connect Application
Mimecast Personal Portal
Secure MessagingLarge File Send
Targeted Threat Protection
Internet Explorer 11
Edge
Chrome
Safari
Firefox v3 Onwards

* Devices with a browser resolution lower than 768px aren't currently supported.

Internet Explorer version support follows the Microsoft life cycle. We strongly encourage you to update your browser to a supported version for the purposes of security assurance.

TLS and SSL Protocols

This section is intended as a reference to the protocols and cipher suites that Mimecast supports. It is not a detailed explanation of the workings of TLS and SSL.

Our web applications are accessed using Hypertext Transfer Protocol Secure (HTTPS). Technically HTTPS is not a protocol. It's the result of layering HTTP on top of Transport Layer Security (TLS) or Secure Sockets Layer (SSL) thereby adding the security of these protocols to cleartext HTTP communications. Using these cryptographic protocols doesn't guarantee the connection is secure. As such, we only support certain protocol versions and ciphers.

 

The quality of the protection provided by SSL relies on the private key (the basis for the security) and the certificate (which conveys the identity of the server to its visitors). We use an SSL certificate issued by Verisign, a reputable Certificate Authority (CA) that has a 2048-bit RSA key. We no longer support SSLv3 for inbound browser connections. Instead one of the following TLS versions should be used:

ProtocolDescription

TLS v1.0

Considered to be secure. There are no known major security weaknesses (provided it is properly implemented).
TLS v1.1 and 1.2The most secure protocols that have no known security issues. However, many server and client systems do not currently support these protocols.

 

Cipher Suites

 

TLS/SSL cipher suites enforce the actual security of the encrypted session. We support several strong cipher suites with a minimum of 128 bits. This guarantees your secure connection cannot be decrypted if intercepted. The following cipher suites aren't supported:

CipherReason for Non-Support
Anonymous Diffie-Hellman (ADH) suitesIt provides no authentication.
NULL cipher suitesIt provides no encryption.
EXPORT cipher suitesIt uses trivial encryption.
WEAK cipher suitesIt typically uses less than 128 bit.
Rivest Cipher 4 (RC4)It is insecure.

 

We're also unable to support any connections using the RC4 cipher, and will be rejected by the Mimecast API. We strongly recommend you update your operating system and browsers to more recent secure versions in order to maintain security.

 

Internet Explorer Settings

 

Internet Explorer users must ensure the following browser settings are used:

SettingProcess
Disable compatibility mode for our domains.
  1. Click on the Tools | Compatibility View Settings menu item.
  2. Remove all Mimecast Domains from the list of compatible view websites. Compatibility mode isn't supported.
  3. Click on the OK button.
Add our logon URLs to your trusted sites.
  1. Click on the Tools | Internet Options menu item.
  2. Click on the Security tab.
  3. Click on the Trusted Sites icon.
  4. Add our Logon URLs to your trusted sites. See the Mimecast Data Centers and URLs page for full details.
  5. >Ensure the Security Level is set no higher than "Medium-High".>
  6. Click on the OK button.
Clear all temporary internet files, cookies, and browsing history.
  1. Click on the Tools | Internet Options menu item.
  2. Click on the General tab.
  3. Select the Delete Browsing History on Exit option.
  4. Click on the OK button.
  5. Restart Internet Explorer.
With older IE versions, data can only be cleared if your browser is closed. To clear this data, right click on the IE icon and click on the "Internet Options" menu item.
Allow first and third party cookies.
  1. Click on the Tools | Internet Options menu item.
  2. Click on the Privacy tab.
  3. Click on the Advanced button.
  4. Select the Accept option for both First and Third Party Cookies.
  5. Click on the OK button twice.
Allow webpage animations.
  1. Click on the Tools | Internet Options menu item.
  2. Click on the Advanced tab.
  3. Scroll to the Multimedia options.
  4. Select the Play Animations in Webpages option.
  5. Click on the OK button.
Allow Javascript execution.
  1. Click on the Tools | Internet Options menu item.
  2. Click on the Security tab.
  3. Click on the Trusted Sites icon.
  4. Click on the Custom Level button.
  5. Scroll to the Scripting options.
  6. Ensure the Active Scripting option is enabled.
  7. Click on the OK button twice.
Disable accessing data sources across across domains.
This is required for Administration Console access only using IE 10 / 11.
  1. Click on the Tools | Internet Options menu item.
  2. Click on the Security tab.
  3. Click on the Trusted Sites icon.
  4. Click on the Custom Level button.
  5. Scroll to the Miscellaneous options.
  6. Ensure the Access Data Sources Across Domain option is disabled.
  7. Click on the OK button twice.
3 people found this helpful

Attachments

    Outcomes