I am attempting to get my Splunk VM to send email via SSL or TLS using the localhost settings. I want to use localhost because I do not have access to any mail relay (3rd party such as GMAIL, HOTMAIL, etc are out of the question). When I configure Splunk to use SSL/TLS and then I run a simple sendemail test ( index=_audit | head 3 | sendemail to="firstname.lastname@example.org" use_ssl=true / index=_audit | head 3 | sendemail to="email@example.com" use_tls=true) I get the following error:
command="sendemail", [Errno 111] Connection refused while sending mail
The actual intent of this is to successfully send email from localhost using SSL/TLS from a python script I've written as part of an app I'm submitting for approval to Splunk Cloud, which was denied because I was sending email without SSL. It works fine with non-SSL but it fails with localhost settings.
I feel like there may be something fundamental I'm missing.