Mailflow Rules and Office 365 Message Encryption

%3CLINGO-SUB%20id%3D%22lingo-sub-1441315%22%20slang%3D%22en-US%22%3EMailflow%20Rules%20and%20Office%20365%20Message%20Encryption%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1441315%22%20slang%3D%22en-US%22%3E%3CP%3EHey%20all%2C%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWe%20have%20recently%20implemented%20a%20mailflow%20rule%20in%20my%20environment%20that%3CSPAN%3E%26nbsp%3Bdisallow's%20our%20users%20from%20sending%20SSN%20numbers%2C%20drivers%20license%20numbers%2C%20etc%20outside%20of%20our%20environment.%20The%20rule%20is%20supposed%20to%20allow%20the%20messages%20through%20if%20the%20exception%20of%20them%20being%20encrypted%20or%20password%20protected%20if%20it%20is%20an%20attachment%20is%20met.%20%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3EThe%20password%20protection%20seems%20to%20be%20functioning%20correctly%20but%20using%20the%20built%20in%20O365%20outlook%20encryption%20it%20is%20still%20rejecting%20the%20messages.%20Does%20this%20sound%20like%20an%20issue%20using%20the%20built%20in%20encryption%20provided%3F%20I%20moved%20away%20from%20using%20a%20DLP%20policy%20since%20it%20didn't%20support%20the%20exception%20of%20encrypting%20the%20emails%20but%20it%20looks%20like%20I'm%20back%20where%20I%20started.%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3EThanks%20for%20any%20insight%20into%20this.%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-1441315%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAdmin%20center%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EOffice%20365%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EOffice%20365%20Administration%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EOffice%20365%20Management%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1441426%22%20slang%3D%22en-US%22%3ERe%3A%20Mailflow%20Rules%20and%20Office%20365%20Message%20Encryption%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1441426%22%20slang%3D%22en-US%22%3EIt%20certainly%20sounds%20like%20it%20may%20be%20a%20limitation%20of%20that%20built%20in%20encryption.%3CBR%20%2F%3E%3CBR%20%2F%3EYou%20don%E2%80%99t%20have%20AIP%20P2%20licences%20by%20any%20chance%20do%20you%3F%20You%20could%20use%20that%20to%20auto%20classify%20and%20protect%20content%20based%20on%20a%20sensitive%20info%20type%20match.%3C%2FLINGO-BODY%3E
Highlighted
New Contributor

Hey all, 

 

We have recently implemented a mailflow rule in my environment that disallow's our users from sending SSN numbers, drivers license numbers, etc outside of our environment. The rule is supposed to allow the messages through if the exception of them being encrypted or password protected if it is an attachment is met.

 

The password protection seems to be functioning correctly but using the built in O365 outlook encryption it is still rejecting the messages. Does this sound like an issue using the built in encryption provided? I moved away from using a DLP policy since it didn't support the exception of encrypting the emails but it looks like I'm back where I started. 

 

Thanks for any insight into this. 

1 Reply
Highlighted
It certainly sounds like it may be a limitation of that built in encryption.

You don’t have AIP P2 licences by any chance do you? You could use that to auto classify and protect content based on a sensitive info type match.