Open with table of contents

Mail policy routes: encryption and decryption policy

Encryption policy

To enable encryption on a mail policy route, you change the default delivery action for messages matched with the policy route so that the policy route applies encryption endpoints to the relevant recipients.

If encryption is enabled on a route, you can override the route setting using a content rule with a disposal action to deliver messages in the clear.

Show me how

1. Point to the Policy tab.
2. Under Manage Policy Definition, click Content Rules.
3. In the Content Rules list, select the content rule, and then click Edit.
4. In the Disposal Action area, click Click here to change these settings.
5. In the Disposal Action list, click Deliver the message.
6. Change as specified on the route to in the clear.
7. Click Save.
8. Apply the configuration.

If encryption is not enabled on a route, you can override the route setting using a content rule with a disposal action to deliver messages applying encryption endpoint policy.

Show me how

1. Point to the Policy tab.
2. Under Manage Policy Definition, click Content Rules.
3. In the Content Rules list, select the content rule, and then click Edit.
4. In the Disposal Action area, click Click here to change these settings.
5. In the Disposal Action list,click Deliver the message.
6. Change as specified on the route to applying encryption endpoint policy.
7. Click Save.
8. Apply the configuration.

Decryption policy

The Email Gateway will not decrypt email messages, content-check them, or validate their digital signatures unless these features have been enabled on a policy route.

This enables you to control which routes to use to decrypt incoming email.

See also...

• Enable encryption on a mail policy route
• Encrypt email using mail policy content rules
• Deployment scenarios for outgoing email
• Decrypt and content-check PGP and S/MIME messages
• Deployment scenarios for incoming mail
• Apply the new configuration