FortiMail IBE configuration workflow
Follow the general steps below to use the FortiMail IBE function:
If you want to encrypt email based on the email contents:
• Add the content action profile to the content profile and configure the scan criteria in the content profile, such as attachment filtering, file type filtering, and content monitor and filtering including the dictionary and action profiles. See
“Configuring content profiles”.
For example, on the FortiMail unit, you have:
• added the dictionary profile to a content profile which also includes a content action profile that has an encryption profile in it
• included the content profile to IP and recipient policies
You then notify your email users on how to mark the email subject line and header if they want to send encrypted email.
For example, Alice wants to send an encrypted email to Bob through the FortiMail unit. She can add “Confidential” in the email subject line, or “Confidential” in the header (in MS Outlook, when compiling a new mail, go to Options > Message settings > Sensitivity, and select Confidential in the list). The FortiMail unit will apply the policies you configured to the email by checking the email’s subject line and header. If one of them matches the patterns defined in the dictionary profile, the email will be encrypted.
If you want to encrypt email using message delivery rules:
• Configure message delivery rules using encryption profiles to determine email that need to be encrypted with IBE. See
“Configuring delivery rules”.