You are viewing the RapidMiner Server documentation for version 9.2 -Check here for latest version
Mail Security
If you did not enable mail security for outgoing messages during the installation of RapidMiner Server, or you want to change the security or authentication settings, you can do so by editing thestandalone.xml
configuration file.
Preconditions
Edit the file
in yourRapidMiner Server home directory./configuration/standalone.xml Locate the mail subsystem element, for example:
配置
A list of all possible options can be foundhere.
Options can be added with property tags.
Connection Security
StartTLS
Enforce StartTLS
TLS
TLS 1.2 + PFS
Supported Perfect Forward Secrecy Cipher Suites
Theunlimited strength jurisdiction policy filesare required forAES_256
cipher suites.
Elliptic curve Diffie–Hellman |
---|
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 |
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 |
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 |
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 |
TLS_ECDHE_RSA_WITH_AES_256 _CBC_SHA384 |
TLS_ECDHE_RSA_WITH_AES_256 _GCM_SHA384 |
The JVM system propertyjdk.tls.ephemeralDHKeySize
should be set to2048
for Diffie–Hellman cipher suites*.
Diffie–Hellman |
---|
TLS_DHE_DSS_WITH_AES_128_CBC_SHA256 |
TLS_DHE_DSS_WITH_AES_128_GCM_SHA256 |
TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 |
TLS_DHE_DSS_WITH_AES_256 _CBC_SHA256 |
TLS_DHE_DSS_WITH_AES_256 _GCM_SHA384 |
TLS_DHE_RSA_WITH_AES_256 _GCM_SHA384 |
Authentication
Enable & Enforce CRAM-MD5
Enforce NTLM
Reserved Properties
These parameters are already covered by existing settings.
mail.smtp.user
Change the name attribute of the login tag instead.
mail.smtp.host & mail.smtp.port
Configure the outbound-socket-binding referenced by the custom-server instead.
mail.smtp.from
Change the from attribute of the mail-session tag instead.