KB Article #176477
Secure all SM replies from Enterprise users
Problem
A large number of organizations prefer to have their internal (Enterprise) users receive secure messages directly as a normal email, for convenience.However, if this is the case and an external user sends a secure message to an internal user directly from their Secure Mailbox web inbox, the internal recipient may not know or notice that the message was sent secured and can easily reply directly, without securing the reply. Since usually a reply contains the original message text, often all replies must be secured as well, to enforce PCI and/or PHI compliance.
The policy described below will allow administrators to enforce all replies to secure messages from the web interface to be redirected to Secure Mailbox as well, if the message is sent unencrypted.
Resolution
1. Open the MailGate Admin UI and navigate to Content Policies > Outbound > Delivery and create a new policy2. Under theĀ "IF" section:
- Check the "Headers" Option
- Select MESSAGE CONTAINS: Specific content in the following headers
- Under "Standard headers:" scroll down and select "In-Reply-To"
- Switch the radio button at the bottom to "Any of the following words or phrases"
- In the text field put in the string below:
*JavaMail.root@[HOSTNAME]
NOTE: You must change [HOSTNAME] to be the device hostname as listed under Administration > Interfaces. If you have multiple servers, create a string for each, putting each string on a new line, e.g.:
*JavaMail.root@mailgate1.yourdomain.com
*JavaMail.root@mailgate2.yourdomain.com
Once ready, click Next.
3. Under the "THEN" section:
Select Redirect to Secure Mailbox and chose your preferred Delivery profile.
4. Save and enable the policy.