How do I send an encrypted email using Office 365?
O365 delivers multiple encryption options to help us meet our needs for email security. This article describes how to encrypt email in Office 365.
About Outlook message Encryption feature.
Microsoft released a feature update for Outlook In version 1812 (Build 1126.20188) that puts all your encryption options in one place. The encryption feature lets you share your confidential and personal information while ensuring that your email message stays encrypted and doesn’t leave Microsoft 365.
Supported Outlook clients
Outlook desktop client (Outlook for Microsoft 365, Outlook 2019, 2016)
Outlook desktop client for Mac (outlook for Microsoft 365 under O365 subscription)
Outlook on the web
What encryption types are available to me and what do they mean?
Outlook desktop client
Do Not Forward
Outlook on the web
Do Not Forward
Confidential View Only
Encrypt Only: The message is encrypted but no restrictions are placed on the message.
Do Not Forward: Only the recipients of the email or document (data file) will be able to view and reply. They cannot forward or share with other people or print. Even if someone you did not specifically give permission to access the file gets it, he or she will not be able to view the contents, because the policy is checked upon opening and the information is encrypted the entire time.
Confidential: Only people in our Office 365 tenant can access the content, make edits, and share with others inside our implementation of Office 365.
Confidential View Only: Only people in our Office 365 tenant can view this content but cannot edit or change it in any way. They can print and share with others inside our implementation of Office 365.
How do I send an encrypted message?
Outlook for Microsoft 365 client (Windows) – In a New Email message, choose Options, select Encrypt and pick the encryption that has the restrictions you want to enforce, such as Encrypt-Only or Do Not Forward.
Outlook for Mac – In a new email message, choose Options, select Encrypt and pick the encryption that has the restrictions you want to enforce.
Outlook on the Web ( Windows) - in a New Message, select Encrypt, click on Change permissions to pick the encryption restriction you want to enforce.
Are my Attachments Encrypted?
How can an external recipient open the encrypted message?
When the encrypted message arrives in the external recipient’s mailbox they will need to click on the “Read the message” button where it will redirect them to the secure portal.
The secure portal will give the recipient two options to view the encrypted message.
Sign in with their existing email providers email address and password.
The recipient may be prompted by their email provider to Agree to a small disclosure for access.
Sign in with a one-time passcode (The passcode will be sent to the recipient’s Inbox). Please note there is an expiration limit of 15 minutes.
Once the recipient enters the one-time passcode, they will also have the option to select “This is a private computer. Keep me signed in for 12 hours”.
How can a recipient of an Encrypted message reply after viewing the encrypted message?
Once the user has authenticated with either their social ID (email provider) or a one-time passcode they will have the ability to view the encrypted message and reply within the secure portal.
*If the sender selected Do Not Forward when sending the encrypted message, the Forward and Print options will be grayed out.
Do encrypted messages always have to be viewed via the O365 secure portal?
Yes, to view the content they will always be redirected to the secure portal no matter what option they select.
Do messages remain Encrypted after a recipient forwards the encrypted message?
Yes. In order to allow the new recipient of the forwarded message to successfully view the secure message, the forwarder needs to ensure the forward action is done inside of the secure portal where they can see the encrypted message. The forwarder will get a notification when performing this action.
*If the forwarder does not forward the message via the secure portal and decides to forward the encrypted notification the forwarded recipient will not be able to view the encrypted message.
Why Don't I See the Encrypt Button in the Compose Window on Office for Mac?
Only University owned devices should be using the perpetual license.
To check if your Office for Mac installation is licensed using the Volume License:
1. Open any Office for Mac application
2. Click the name of that application in the menu bar, then click About
3. Check your license type. If your license type reads Microsoft 365 Subscription, and you still can't see the e-mail encryption options, contact email@example.com.
4. If your license type reads Volume License 2019, you will need to change your license type. This will require credentials for an administrator account on your Mac. If you do not have an administrator account, contact your departmental IT team for assistance.
To change your license type:
1. Download the Microsoft_Office_License_Removal_2.1.pkg file from https://go.microsoft.com/fwlink/?linkid=849815.
2. Save any work and close all Office applications.
3. Double click the license removal package and complete the installation. This package doesn't actually install any files, but deletes the relevant license files on your Mac. None of your other Office settings or data will be deleted.
4. Open any Office application. You will be prompted to sign in.
5. Enter your netID, click Next, and enter your UIC common password. Click Sign In.
6. Your Office for Mac installation should now be licensed using the Microsoft 365 license. To double check, click the name of the Office application in the menu bar, click About, and confirm the license type reads Microsoft 365 License. If you are having trouble activating Office, follow the steps in this article: https://answers.uillinois.edu/uic/88085