Enable encryption or decryption on a policy route

Enable encryption on a mail policy route

To enable encryption on a mail policy route, you change the default delivery action for messages matched with the policy route so that the policy route applies encryption endpoints to the relevant recipients.

  1. Point to the Policy tab.
  2. Under Manage Policy Definition, click Mail Policy Routes.
  3. Select the policy route.
  4. On the Manage Policy Routes toolbar, click Edit.
  5. In the Do NOT Decrypt or Apply Encryption Endpoints area, click Click here to change these settings.
  6. Select the By default apply encryption endpoint delivery policy check box.
  7. Click Save.
  8. Apply the configuration.

Enable decryption on a mail policy route

  If your Secure Email Gateway is operating in FIPS mode, you cannot apply decryption to PGP messages. PGP encryption/decryption is not compliant with FIPS 140-2 and is unavailable in FIPS mode.

To decrypt and apply content rules to PGP and S/MIMEClosed Secure Multipurpose Internet Mail Extensions (S/MIME) is a specification for secure email messages that uses the X.509 format for digital certificates and uses various encryption algorithms such as 3DES. messages which match a mail policy route:

  1. Point to the Policy tab.
  2. Under Manage Policy Definition, click Mail Policy Routes.
  3. In the information panel, click a mail policy route to select it.
  4. On the Manage Policy Routes toolbar, click Edit.
  5. In the Do NOT Decrypt or Apply Encryption Endpoints area, click Click here to change these settings.
  6. Select the Decrypt and apply content rules to PGP and S/MIME messages check box.
  7. Click Save.
  8. Apply the configuration.
 

If you change any configuration or policy settings, you must Apply Configuration for the new settings to take effect. You can do this either from the Changes Made panel, or System > ConfigurationApply Configuration. See Apply new configuration for more information.

If you use Peer Gateways (i.e. when multiple Gateways are peered), any configuration changes from a local Gateway can then be applied to all the peers at the same time. See Configure Peer Gateways for more information.

See also...