Create, Read, or Reply to an Encrypted Message
Applies to: Forefront Online Protection for Exchange
Topic Last Modified: 2012-04-16
This topic explains how typical email users can create, read, and reply to encrypted messages by using the Microsoft Exchange Hosted Encryption (EHE) service subscription with Forefront Online Protection for Exchange (FOPE). It also contains some important things to keep in mind while working with encrypted messages. For an overview of the hosted email encryption services in FOPE, see Exchange Hosted Email Encryption Service Subscription in FOPE.
The procedures here explain how email users can create a new encrypted message, read an encrypted message they have received, and reply to an encrypted message.How to create a new encrypted message
Create a new message in your preferred email program, and send the message in the same manner you would create any non-encrypted message.
The message will be encrypted without any further action on your part if it matches the policy rules that your FOPE administrator has established for your enterprise. For example, an administrator may have set up rules to encrypt all outgoing messages or only messages that contain certain words. Check with your local email administrator for more information.
Open the secure message.
Click the Read Message button.
Enter your password and click Continue.
For security purposes, the link provided to read your encrypted message can only be clicked once. If you attempt to click the same link a second time, you will receive the following error message:
This link has already been used. If you are trying to view your secure message, return to your inbox, click on the message you are attempting to read, and open the attachment titled message_zdm.html.
If this happens, you will need to go back to the original message you received and follow the authentication process again in order to read the message. This will cause a new message to be sent to you with a new link. If you are still unable to read the message, contact the sender and let their support team know of the issues with decrypting the message. From this point they will need the encryption team for further investigation. You may wish to escalate this matter to your local support personnel if you continue to have problems decrypting messages.
The time allowed to read an encrypted message is 15 minutes when accessing a message that was sent using the EHE service. This timer starts as soon as the receiver processes the authentication through the message_vsr.html attachment. You will have 15 minutes to authenticate, open the answer-back authentication message, click the token that was sent, read your decrypted message, compose a reply to the sender and send in order to have your response encrypted as well.
If the answer-back authentication message is delayed for any reason or the message that you are replying with is long, and takes more than 15 minutes to compose, the session will run out of time and you will get an error.
As soon as you have received one answer-back message that has expired, you must request another answer-back message from the HTML message in order to view the encrypted message again.
Click Reply or Reply All from an open encrypted message. A new window will open.
Type your message and attach any applicable files. The encryption service allows attachments up to 10 MB.
Click Send Secure when you have finished composing the message.