To demonstrate TOE utilizes the TLS protocols for un-trusted communication channels
PROCEDURE:1 Execute FMT_WEBUI_TLS_ENABLE2 Go to Properties → Connectivity → Setup → SMTP (Send Emails) → Configure IPv4 Address: 172.16.0.553 Go to Properties → Connectivity → Setup → SMTP (Send Emails) → Connection Encryption.4 Under Connection Encryption,Select 'STARTTLS' option and Click 'Apply' button. Note: Validate Server Certificate option will be enabled.5 Initiate Wireshark on hmail server PC6 Perform an Email job on the LUI.7 Verify in Wire shark the communication channel is initiated by the TOE and encrypted but there will be no negotiation will occur.8 Verify audit entry following steps in CO_JOBSTATUS_AUDITEVENTS. 9 Execute CO_AUDIT_DOWNLOAD. And inspect the tlsfile.txt under audit log.
TEST_COVERED_BY: SRT_ANALYZATION: OUTPUT:See FMT_WEBUI_TLS_ENABLEThe SMTP (Send Emails) - Required Information web page will be displayed.The SMTP (Email) Connection Encryption web page will be displayed.The Settings will be saved.Wireshark willl be initiatedThe Email job initiated correctly and should be comp terminated.Wire shark will show the TOE initiating the connection and data encrypted with the deny request from the server.See CO_JOBSTATUS_AUDITEVENTS1. Event '9 Email Job' will be generated with status 'terminated'.The tlsfile.txt should contain below:
2024.12.23 15:44:01 LOG5[ui]: Reading configuration from file /var/opt/nc/dlms/smtp/data/stunnel.default
2024.12.23 15:44:01 LOG5[ui]: UTF-8 byte order mark not detected
2024.12.23 15:44:01 LOG5[ui]: FIPS mode enabled