Sophos Email customers using IP-based mailflow rule connectors must migrate to certificate-based configuration by March 31st. To see if you're affected Click Here.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Email Advanced: Push Encryption vs Portal Encryption

Hello all,

Our company currently does not offer the portal encryption and uses the standard push encryption. Does anyone know if the Portal Encryption allows users to send Encrypted emails internally? Or can anything be changed to allow the end users to send encrypted emails internally. Thanks!


Added tags
[edited by: Raphael Alganes at 12:10 AM (GMT -7) on 5 Jun 2023]
  • For internal email encryption to be properly implemented, the encryption needs to be done on the client, not on a server or gateway. The practicality of this depends on what the particpating clients (and users) can support, as in S/Mime is supported now by most mail clients, but not many users, or so it seems. If you don't want to be dependent on what recipients are running, you can install Central Device Encryption, right-click a file, and create a password protected file. You can mail the protected (html) file, and send the password via other means.

    “First things first, but not necessarily in that order” – Doctor Who

  • Technically you could do it but it would require you to reconfigure your email routing in M365 or Google Workspace to route internal email through Central. We do not recommend this. Why? Because it then becomes a single point of failure and increases time of delivery for internal email as every piece of internal email must be routed to Sophos and scanned. We may in the future offer the ability to support this as a separate offering but for now I would not advise it.