CipherMail Documentation
Gateway Administration
- Introduction
- Quick setup
- Admin
- Administrators
- Network
- MTA
- System
- Backup
- Log export
- Reporting
- SSL/TLS
- Company logo
- SMS gateway
- Cluster settings
- Extract text
- Fetchmail
- Licenses
- Logger levels
- Monitoring
- Notification
- PEM to PFX
- Proxy
- Send email
- Settings
- Introduction
- Users
- Domains
- Sender and receiver settings
- General
- S/MIME
- Enabled
- Strict mode
- Max. message size
- Encryption algorithm
- Encryption scheme
- Signing algorithm
- Auto select certificates
- Always use freshest signing certificate
- Auto request certificate
- Add user
- Encrypt headers
- Remove signature
- Skip calendar messages
- Skip signing calendar messages
- Add additional certificates
- Auto import certificates from email
- Skip import of untrusted certificates
- Check for invalid 7bit chars
- Abort decrypt on invalid 7bit chars
- PGP
- Enabled
- PGP encoding to external
- Enable PGP/INLINE to internal
- Max. message size
- Signing algorithm
- Encryption algorithm
- Compression algorithm
- Convert HTML to text
- Add integrity packet
- Key size
- Auto publish
- Auto request
- Remove signature
- Import keys from email
- Remove keys from email
- Scan HTML for PGP
- Skip non PGP extensions
- PGP partitioned fix-up
- Skip signing only
- Auto update email addresses
- PDF
- PDF enabled
- OTP enabled
- Generate password to originator
- Max. message size
- Only if mandatory
- Sign email
- Deep scan
- Reply allowed
- Send CC to replier
- Reply validity interval
- Reply URL
- Reply sender
- Use reply sender
- Add cover page
- Cover page
- Auto rename attachments
- Attachments to rename
- Keyword to add to renamed attachments
- Reply Max. attachment size
- Reply Max. number of attachments
- Attach original message as RFC822 (.eml)
- Background color
- Password
- Encryption subject trigger
- Signing
- Encryption header trigger
- Signing header trigger
- Signing subject trigger
- One time password (OTP)
- Security info
- Subject filter
- CA
- Post processing
- Other
- Custom
- Subject triggers
- Header triggers
- Portal
- DLP
- Enable pattern scanning
- Quarantine URL
- DLP managers
- Quarantine on failed encryption
- Quarantine on error
- Warning to originator
- Warning to DLP managers
- Quarantine to originator
- Quarantine to DLP managers
- Block to originator
- Block to DLP managers
- Error to originator
- Error to DLP managers
- Release to originator
- Release to DLP managers
- Delete to originator
- Delete to DLP managers
- Expire to originator
- Expire to DLP managers
- Allow download
- Allow release
- Allow release encrypt
- Allow release as-is
- Allow delete
- SMS
- DKIM
- Webmail
- Certificate request by mail
- Licensing
- Templates
- Template format
- Default templates
- Encrypted PDF
- Encrypted PDF via SMS
- Encrypted PDF OTP
- Encrypted PDF OTP invite
- Encryption failed notification
- Encryption notification
- Passwords notification
- SMS with password
- SMS PFX password
- PFX email
- DLP warning
- DLP quarantine
- DLP block
- DLP error
- DLP release notification
- DLP delete notification
- DLP expire notification
- Custom 1
- Custom 2
- Custom 3
- S/MIME
- Introduction
- X.509 certificate
- Certificate store
- Root store
- Revocation checking
- Certificate selection
- Additional certificates
- CRL
- CTL
- Certificate Authority
- Built-in CA
- CA configuration
- Certificate Request Handlers
- Create new end-user certificate
- Select default CA
- Pending requests
- Bulk requests
- Create CRL
- Send Certificates
- PGP
- PDF Messenger
- DLP
- Introduction
- Express setup
- Patterns
- Text normalization
- Selecting patterns
- DLP settings
- Enable pattern scanning
- Quarantine URL
- DLP managers
- Quarantine on failed encryption
- Quarantine on error
- Warning to originator
- Warning to DLP managers
- Quarantine to originator
- Quarantine to DLP managers
- Block to originator
- Block to DLP managers
- Error to originator
- Error to DLP managers
- Release to originator
- Release to DLP managers
- Delete to originator
- Delete to DLP managers
- Expire to originator
- Expire to DLP managers
- Allow download
- Allow release
- Allow release encrypt
- Allow release as-is
- Allow delete
- Quarantine
- Webmail Messenger
- Wizards
- Queues
- Logs
- LDAP
- Community Edition notes
- Other
Gateway Installation
Webmail Messenger Administration
- Introduction
- Quick setup
- Admin
- Administrators
- Network
- MTA
- System
- Backup
- Log export
- Reporting
- SSL/TLS
- Company logo
- SMS gateway
- Cluster settings
- Licenses
- Logger levels
- Monitoring
- Notification
- PEM to PFX
- Proxy
- Send email
- Settings
- Introduction
- Users
- Domains
- Settings
- General
- Webmail
- PDF
- Reply allowed
- Send CC to replier
- Reply sender
- Use reply sender
- Password length
- Reply validity interval
- Reply URL
- Deep scan
- Add cover page
- Cover page
- Auto rename attachments
- Attachments to rename
- Keyword to add to renamed attachments
- Reply Max. attachment size
- Reply Max. number of attachments
- Attach original message as RFC822 (.eml)
- Background color
- SMS
- Other
- Post processing
- Custom properties
- Quota
- Portal authentication settings
- Webmail settings
- Auto cleanup
- DKIM
- Licensing
- Templates
- PDF Messenger
- Wizards
- Queues
- Logs
- Other
Virtual Appliance
Office 365 Integration
Google Workspace Integration
HSM Integration
Cluster Administration
EJBCA Integration
CipherMail for Android
Frequenly Asked Questions
- General FAQ
- S/MIME
- What exactly is a certificate?
- What is a root certificate?
- What is an intermediate certificate?
- What is an end-user certificate?
- How can a certificate have ‘child’ certificates?
- Do ‘child’ certificates share keys with the parent?
- Why do certificates expire?
- How does the gateway handle expired certificates?
- What is the difference between a signature and an encryption certificate?
- How does the gateway handle key usage and extended key usage?
- Do we need separate signing and encryption certificates?
- Can we use a self-signed root certificate or should it be issued by a trusted CA?
- What does it mean when a certificate is revoked?
- What is a certificate Trust List (CTL)?
- What does the key usage nonRepudiation mean?
- PGP
- PDF Encryption
- What is PDF email encryption?
- With PDF encryption, are attachments encrypted as well?
- Is PDF encryption safe? Some companies claim they can crack PDFs?
- With PDF encryption, how can the recipient securely reply ?
- The PDF does not contain the reply link. What do I have to do to enable the reply functionality?
- There are different password modes for PDF encryption. Which mode is the most secure?
- With the One Time Password (OTP) mode, a recipient can be invited. Is this not insecure? What happens if the invite is intercepted?
- DLP
- I would like to quarantine an outgoing email when the To and CC header contains a large number of recipients. How can I do this?
- Can the DLP module detect all information leakage?
- I have added a sentence to the list of patterns but somehow the sentence is not matched. Why is the sentence not matched?
- What is the skip list?
- I would like to match a word if the word contains uppercase characters but not when it contains lowercase characters. Is this possible?
- If my pattern contains uppercase letters, it never matches any text. Why is that?
- Are there any pre-defined patterns?
- Are attachments also scanned?
- I cannot delete certain patterns. Why is that?
- Are email headers scanned?
- Gateway
- Incoming encrypted email is not decrypted. Why is that?
- Email received by the gateway contain X-Djigzo-Info headers. What are these?
- The certificates from incoming digitally signed email are not stored in the certificates store?
- What is the difference between the gateway back-end Web GUI?
- If I try to login immediately after starting the gateway I get an exception. Why is that?
- Is it possible to authenticate the admin against LDAP or Active directory?
- Where should the CipherMail gateway be placed?
- Is the gateway an on-premises or a cloud based application?
- Can the gateway be used as a milter?
- Does the gateway support Let’s Encrypt?
- Webmail Messenger
- What are the requirements for a recipient?
- Can I change the color scheme of the Webmail Messenger portal?
- Do I need the Gateway to use Webmail Messenger?
- Is Webmail Messenger an on-premises or a cloud based application?
- If I use Webmail Messenger in add-on mode, I need to setup an S/MIME connection between the gateway and Webmail Messenger. Why is that?
- Can I use the community edition of the gateway with Webmail Messenger?
- Does Webmail Messenger support 2-factor authentication?
- Are emails stored on Webmail Messenger indefinitely?
- Does Webmail Messenger support PDF encryption?
- Does Webmail Messenger support Let’s Encrypt?
- Cluster
- Why do I need at least three nodes for a cluster?
- Can a node run in a different data center than the other nodes?
- If two nodes are running in data center A and one node in data center B and the connection between the data centers fail, can I make sure that CipherMail is functional in both data centers?
- Virtual Appliance
- Support policy and EOL statements