Views:

The Administrator can use the following to identify the highest TLS version that their MTA supports:

If the MTA can be accessed through the internet, the Administrator can use www.checktls.com website to check their MTA's TLS version.

  1. Open www.checktls.com website.

  2. Access email > test TO:

    tls version checker

    Click image to enlarge

  3. On the newly opened URL, http://www.checktls.com/perl/live/TestReceiver.pl, provide the test mail address and MTA info.

    For example, the following shows that the TLS status to test is for MTA 218.104.127.134:

    sample test email address and MTA info

  4. Click Run Test to start testing.

  5. Check the SSLVersion info in the result.

    For example, "SSLVersion in use: TLSv1.2" indicates that this MTA supports the highest TLS version which is v1.2

    Check for SSLVersion info

If the MTA could not be accessed through the internet, the Administrator can use the local OpenSSL to check the MTA's supported TLS version directly.

Run the following via the Command line:

openssl s_client -connect MTA:port -starttls smtp

For example, the following is the command used for checking the TLS version for MTA 192.168.50.91:

openssl s_client -connect 192.168.50.91:25 -starttls smtp

Result contains "Protocol : TLSv1.2", this indicates that MTA 192.168.50.91 supports the highest TLS version which is v1.2.

MTA 192.168.50.91

Protocol TLSv1.2

 
If your MTA only supports TLS v1.0, we strongly recommend that you contact your MTA vendor to upgrade your MTA system to support TLS v1.2.
Keywords: TLS 1.0 1.2,mta,supported versions,supported versions tls versions,Mail Transfer Agent