Oct 27 2020 02:48 PM
Oct 28 2020 06:38 AM
@Chris_Mancini Hi, would you mind elaborate on the post? You mean that if just using the default setting (15 min limit on the OTP) and not checking the "this is a private computer" the users receive the message? Even though the OTP is used within the 15 minutes?
Oct 28 2020 08:00 AM
@ChristianBergstrom Yes, default setting. I send an email from Outlook to a test gmail account and choose Encrypt-Only. In the Gmail account I receive the email that says "Read Secure Message". I am taken to a page that says "Sign in with one time passcode". I click to receive the passcode and it is sent to the test gmail account. I am taken to a screen to input the passcode. There is the "This is a private computer..." checkbox. If I don't check it, then subsequent encrypted responses or new messages to the gmail account are sent to the account. However, when I click "Read Secure Message" I receive a page with "Authentication did not complete". If I check the "This is a private computer..." then everything works fine. Thanks for your help.
Oct 28 2020 08:32 AM
@Chris_Mancini Hi, I had to verify this so created a Gmail account and sent an OME "encrypt only" to the address. OTP was selected and a new code is always being used when replying or sending new emails to the Gmail address. I did not check the box to "remember this device for 12 hours" and am able to enter a new OTP code several times, that is for every new message and new replies as well. In other words I cannot reproduce your issue. I suppose it's browser related and the check box "workaround" you are using also suggests this. Have you tried using different browsers or maybe verify what differentiates your browser settings from default settings for example? Perhaps check with your own org. if you have several units managing applications (the browser).
Oct 28 2020 09:18 AM
@ChristianBergstrom Good advice...I have been using Chrome on my company laptop and I tried MS Edge on the same device and experienced the same behavior. However, when I test with my personal Macbook with Chrome it functions flawlessly so it appears it may be an internal browser setting. I have no idea what setting may be causing this but it helps point me in the right direction. Do you use OME consistently and, if so, have you had any issues with encryption outside of your org?
Oct 29 2020 12:28 AM
@Chris_Mancini Hello, even though it has been around for years there has been a stalemate in our org. due to legal technicalities (such as the key). This has progressed lately and now I'm involved in a pre-study as how OME actually behaves when using the "encrypt-only" template with and without attachments that are being replied to, as well as forwarded to internal/external individuals as second, third and forth recipient. One might think this should be pretty straightforward (and it is when only the sender and the initial recipients is involved to answer your question) but it's getting a bit complex when adding the others. This is not a common scenario and the unit in need of the encryption has a flow that is difficult to explain. So we'll see if they can use OME or if we need to look at another solution.
In short. OME is great and easy to use for all users in an org. but if you're looking at it from a "encryption point of view" you could say it's not "asymmetric" but rather a "symmetric" solution which is much easier to manage and use.
Oct 29 2020 08:00 AM
@ChristianBergstrom Gotcha, we have taken a look at our settings and can't figure out what is causing our original issue. If you or someone else has any further input it would be great. Thanks for your help
Oct 29 2020 08:13 AM
@Chris_Mancini I have to ask what settings have you looked at? Should be something with the cookies/session as it only works when checking the box to be remembered.
Oct 30 2020 03:10 PM
@ChristianBergstrom So we did some further testing with home computers that aren't connected to our organization and had the same failure...these were Windows machines. So I am at a loss unless there are other ideas floating out there.
Nov 03 2020 09:33 AM
I'd like to hop on this thread and say that my organization is also seeing these issues. I have tested this myself by sending to a Gmail and I receive the same error. I do have an attached file. This is making things hard for our users because they're having to resend their emails when the recipient doesn't save the attachment.
Nov 03 2020 09:42 AM
@akeinath I knew this wasn't an isolated issue as I have seen this from other organizations. This company has even written up a troubleshooting section on their site for their clients.
https://www.atgf.com/tools-publications/receiving-or-sending-encrypted-email
Nov 03 2020 10:43 AM
Nov 03 2020 11:10 AM
@ChristianBergstrom If I use Incognito then it will do it again until I close the incognito window and re-open it. That makes sense if the issue is with cookies. I'm using the new Edge browser.
The email I'm sending is from my Exchange account to a Gmail account with a PDF attached to it. The users that reported it to me were also trying to attach and send to outside addresses.
Nov 03 2020 11:25 AM
Nov 03 2020 11:30 AM
Nov 03 2020 12:23 PM
Nov 03 2020 12:35 PM
@akeinath I agree...this issue seems to be a Microsoft issue. We have our tenant managed by Rackspace. I contacted them with the same scenario and they were able to replicate the "Authentication could not complete" issue. I am trying to work this through them with Microsoft.
Nov 03 2020 01:07 PM
Dec 09 2020 04:45 AM