Categories

Versions

You are viewing the RapidMiner Server documentation for version 9.4 -Check here for latest version

Mail Security

If you did not enable mail security for outgoing messages during the installation of RapidMiner Server, or you want to change the security or authentication settings, you can do so by editing thestandalone.xmlconfiguration file.

Preconditions

  1. Edit the file/configuration/standalone.xmlin yourRapidMiner Server home directory.

  2. Locate the mail subsystem element, for example:

       

配置

A list of all possible options can be foundhere.

Options can be added with property tags.

       

Connection Security

StartTLS

Enforce StartTLS

 

TLS

 

TLS 1.2 + PFS

   

Supported Perfect Forward Secrecy Cipher Suites

Theunlimited strength jurisdiction policy filesare required forAES_256cipher suites.

Elliptic curve Diffie–Hellman
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

The JVM system propertyjdk.tls.ephemeralDHKeySizeshould be set to2048for Diffie–Hellman cipher suites*.

Diffie–Hellman
TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
TLS_DHE_DSS_WITH_AES_256_GCM_SHA384
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384

Authentication

Enable & Enforce CRAM-MD5

   

Enforce NTLM

Reserved Properties

These parameters are already covered by existing settings.

mail.smtp.user

Change the name attribute of the login tag instead.

mail.smtp.host & mail.smtp.port

Configure the outbound-socket-binding referenced by the custom-server instead.

  

mail.smtp.from

Change the from attribute of the mail-session tag instead.