Forum Discussion

Chris_Mancini's avatar
Chris_Mancini
Brass Contributor
Oct 27, 2020

Office 365 Email Encryption OME

I would like to implement OME within my organization. At initial glance, it seems to work great with the one time passcode approach. However I have noticed that if the recipient doesn't check the box...
exchange
ChristianBergstrom's avatar
ChristianBergstrom
Silver Contributor
Oct 28, 2020

Chris_Mancini Hi, would you mind elaborate on the post? You mean that if just using the default setting (15 min limit on the OTP) and not checking the "this is a private computer" the users receive the message? Even though the OTP is used within the 15 minutes?

  • Chris_Mancini's avatar
    Chris_Mancini
    Brass Contributor
    Oct 28, 2020

    ChristianBergstrom Yes, default setting. I send an email from Outlook to a test gmail account and choose Encrypt-Only. In the Gmail account I receive the email that says "Read Secure Message". I am taken to a page that says "Sign in with one time passcode". I click to receive the passcode and it is sent to the test gmail account. I am taken to a screen to input the passcode. There is the "This is a private computer..." checkbox. If I don't check it, then subsequent encrypted responses or new messages to the gmail account are sent to the account. However, when I click "Read Secure Message" I receive a page with "Authentication did not complete". If I check the "This is a private computer..." then everything works fine. Thanks for your help.

     

    • ChristianBergstrom's avatar
      ChristianBergstrom
      Silver Contributor
      Oct 28, 2020

      Chris_Mancini Hi, I had to verify this so created a Gmail account and sent an OME "encrypt only" to the address. OTP was selected and a new code is always being used when replying or sending new emails to the Gmail address. I did not check the box to "remember this device for 12 hours" and am able to enter a new OTP code several times, that is for every new message and new replies as well. In other words I cannot reproduce your issue. I suppose it's browser related and the check box "workaround" you are using also suggests this. Have you tried using different browsers or maybe verify what differentiates your browser settings from default settings for example? Perhaps check with your own org. if you have several units managing applications (the browser).

      • Chris_Mancini's avatar
        Chris_Mancini
        Brass Contributor
        Oct 28, 2020

        ChristianBergstrom Good advice...I have been using Chrome on my company laptop and I tried MS Edge on the same device and experienced the same behavior. However, when I test with my personal Macbook with Chrome it functions flawlessly so it appears it may be an internal browser setting. I have no idea what setting may be causing this but it helps point me in the right direction. Do you use OME consistently and, if so, have you had any issues with encryption outside of your org?