73-10
Cisco ASA 5500 Series Configuration Guide using ASDM
Chapter 73 E-Mail Proxy
Default Servers
Note IMAP generates a number of sessions that are not limited by the simultaneous user count but do count
against the number of simultaneous logins allowed for a username. If the number of IMAP sessions
exceeds this maximum and the Clientless SSL VPN connection expires, a user cannot subsequently
establish a new connection. There are several solutions:
- The user can close the IMAP application to clear the sessions with the ASA, and then establish a new
Clientless SSL VPN connection.
- The administrator can increase the simultaneous logins for IMAP users (Configuration > Features >
VPN > General > Group Policy > Edit Group Policy > General).
- Disable HTTPS/Piggyback authentication for e-mail proxy.
• Mailhost—(SMTPS only) Select to require mailhost authentication. This option appears for SMTPS
only because POP3S and IMAP4S always perform mailhost authentication. It requires the user’s
e-mail username, server and password.
Default Servers
Configuration > Features > VPN > E-mail Proxy > Default Servers
This panel lets you identify proxy servers to the ASA. Enter the IP address and port of the appropriate
proxy server.