Email Filtering Feature For SCMDM

All Replies

• Wednesday, October 28, 2009 9:12 PMAndreas Helland

   
  

  0

  Sign In to Vote
  Not sure what you mean by "encrypted" mail. Mail flow in ActiveSync is strictly between the Exchange server and the ActiveSync client. SCMDM is not able to alter this traffic. SCMDM is able to apply policies regarding ActiveSync though, but I don't believe there's any policies for filtering the mail itself.
  • Reply
  • Quote

   
• Wednesday, October 28, 2009 11:47 PMWayne Phillips.MVP, Moderator

   
  

  0

  Sign In to Vote

  I don't think I fully understand what you are asking. What are you trying to achieve ? Is this in response to a corporate policy ? If you can outline the policy, we can try and help you comply with it.

   

  Cheers Wayne

  Airloom

  • Reply
  • Quote

   
• Friday, October 30, 2009 3:35 AMWindCloud

   
  

  0

  Sign In to Vote
  Hi,
  
  First, thanks for reply.  My scenario as follow:
  
  For certain Exchange email users from my company are using a third party encrytped method for some confidential email.  When they send this type of encrypted email, they need to use a smartcard with certificate installed for authentication.  So,   from company policy prospective, these type of encrypted email should not allow to push to the user mobile device inbox.  Hence, I would like to know if there is any way to filter out this encrypted email before it push to the user mobile device?
  
  Cheers,
  KC
  • Reply
  • Quote

   
• Friday, October 30, 2009 5:10 AMWayne Phillips.MVP, Moderator

   
  

  0

  Sign In to Vote

  Does this third party email tool have EAL4+ security classification? Windows Mobile 6.1 and SCMDM2008 has recently been awarded the EAL4+ Common Criteria Security Classification. You might want to rethink you view of Windows Mobile and MDM security, and allow these email to reside on the devices. Check out the DSD Evaluation Document.
  
  Cheers Wayne
  Airloom

  • Proposed As Answer byWayne Phillips.MVP, ModeratorMonday, November 02, 2009 4:15 AM
  • Marked As Answer byWayne Phillips.MVP, ModeratorMonday, November 09, 2009 12:13 AM
  •  
  • Reply
  • Quote

   
• Sunday, November 01, 2009 8:16 PMAndreas Helland

   
  

  0

  Sign In to Vote
  Your device will request all mail in the user's mailbox once a partnership with Exchange is established. Since the contents of the encrypted mail are just that, encrypted, there isn't an easy way to flag them as "non-pushable". If the device doesn't have the certificate installed it will not be able to read the mail, but it will probably pop up in the inbox in some unreadable form. (I have not tested a scenario like this, so I wouldn't know.)
  
  If you wanted to prevent it from being synced you'd have to code custom plugins for your Exchange server, and while this can be entertaining, I don't think I'd recommend it.
  
  Secure and lock down your mobile devices, and it should be of no great worry that they are able to sync the email. (If it's really sensitive mail maybe it should be in a separate mailbox or something similar on the Exchange server?)

  • Marked As Answer byWayne Phillips.MVP, ModeratorMonday, November 09, 2009 12:13 AM
  • Proposed As Answer byWayne Phillips.MVP, ModeratorMonday, November 02, 2009 4:15 AM
  •  
  • Reply
  • Quote

   
• Monday, November 02, 2009 3:57 AMWindCloud

   
  

  0

  Sign In to Vote
  Thanks to Wayne and Andreas for the information.  Will work on the from the Exchange server side.
  • Reply
  • Quote