DeepSurface: SMTP Settings
DocumentationInstallation GuideOverviewLet DeepSurface Host For YouGetting StartedSystem RequirementsSelf Hosted Quick Start - Installing to Cloud PlatformsSelf Hosted - Installation Using an OVARegistration, Package Installation, and InitializationFirst Steps After Initialization of the ConsoleDeployment OptionsMain and Subordinate ConsolesAgent-Based DeploymentUser Managed Scan DeploymentCredentialed Scanning DeploymentMixed EnvironmentDeployment ToolsActive Directory Group PolicyMicrosoft Endpoint Configuration Manager (part of InTune)Tanium DeployHCL BigFixIvantiVirtual MachinesVMWareVirtual BoxVirtualBox Guest AdditionsAWS EC2 (BYOL)AWS EC2 (Usage Based)Azure CloudGoogle CloudAdditional Items to ConsiderMain Console Server CertificatesLDAPTOFUClock SyncDeepSurface CommandsMultiple Vulnerability SourcesAPI DocumentationUser GuideReportingDashboardsExportsRisk InsightHostsPatchesVulnerabilitiesVulnerability InstancesUsersRemediation Workflow ManagerPlansSettingsIntegrationsWorkflowExportingAccepted Risk PlansAccepted Risk WorkflowExploreModelPathsActivityTasksConfiguration AlertsScan LogsNotification SettingsScanningStatusAgentsUser ManagedCredentialed Scanning SettingsCredentialsScan GroupsGeneral SettingsCloud ScanningNetwork ConnectivitySubordinatesVulnerability SourcesSetupSensitive Assets: PolicesSensitive Assets: ManualAdmin SettingsSMTP SettingsCertificatesOutbound ProxyAuthentication ProvidersUsersTagsIntegrations GuideVulnerability SourcesCrowdStrike SpotlightSentinelOneCarbon Black CloudMicrosoft Defender for EndpointWazuhLansweeper CloudNessus APITenable.io APISecurity Center/Tenable.sc APIRapid7 InsightVM APIQualys APINozomi GuardianEclypsiumAWS InspectorRemediationJira SoftwareTanium (BETA)Authentication ProvidersLDAP (Active Directory)SAML (Azure Active Directory)SAML (Google)SAML (Okta)PAMCyberArkDelinea (Thycotic)Microsoft LAPSSecurity GuideFirewall ConfigurationBase Network RequirementsAgent Network RequirementsCredentialed Scanning Network RequirementsAPI Network RequirementsHow DeepSurface Scans WorkDomain (LDAP) ScanningHost Scanning RoutineReasons for the Administrative Access RequirementEndpoint Protection ConsiderationsOther ItemsScope of Data Storage and RetentionIPS/IDS ConsiderationsLoggingResetting the DSADMIN passwordProduct InformationChangelogsOpen source LicensesEnd User License Agreement (EULA)
DeepSurface can be configured to send email for a variety of reasons. In order to send email, DeepSurface needs an SMTP relay that will accept messages and forward them to the final destination. You can configure this SMTP relay under the Setup > General Settings > SMTP Settings section.
NOTE: DeepSurface requires that SMTP servers support TLS encryption, either via StartTLS or via direct SSL/TLS services. DeepSurface will automatically detect which form of encryption is in use, but will not permit unencrypted SMTP due to the nature of the information being sent. SMTP TLS encryption is a point-to-point method of encryption and does not guarantee end-to-end security of messages sent by DeepSurface. Please keep this in mind when configuring DeepSurface's automated email reports or other functionality.
To configure your SMTP server, enter the Hostname of the email server, TCP Port, and Sender Email Address (used as the From address on emails sent by your system). You will also want to consider whether trust-on-first-use (TOFU) should be enabled. Finally, if your SMTP server requires that you provide credentials to send email, check the Enable Authentication? field and fill in the Username and Password.
Once you have entered your SMTP server configuration, we recommend you test this configuration by using the Test Settings form to the right. Enter a recipient email address and click the Send Test Email button to attempt to send this recipient a message via the configured SMTP relay. You will receive either a confirmation that the SMTP server accepted the email message, or an error message describing how the attempt failed.
When you are finished configuring and testing your settings, click Save at the bottom right of the screen.
If at any point you wish to disable SMTP relay support, delete the value in the Hostname field and save the form.