Issues when receiving Microsoft encrypted emails

Question

Hello,

We are having an issue when receiving Encrypted emails using Microsoft's encryption. When we get these emails it requests for us to verify who we are by logging into Office. In our business, we don't use our M365 tenant domain but instead, we use aliases on most or email accounts. We have an SSO service that will automatically log the user in using the actual email. When we try to login from the outlook app it says we don't have permission to open the email or document. Now if we open outlook from a browser it opens the email with no problem and we can download the attachments. in some cases, even after downloading the attachments we are required to verify our accounts again or are outright told we don't have permission to open. If we are requested to verify our account when opening the document our SSO automatically tries to login and we are told we don't have permissions.

We use a secure sending service and it saves the information of the email address as it comes across our system. If someone uses Microsoft encryption to send an email to Name@Example.com but that person's actual email is ******@Corp.Example.com, could this be the cause of the issue?

There is no error message that points to an issue, but just states we don't have permissions.

Thanks

J

Answer 1

Hello,

Sadly, I am not sure what the companies that are sending these secure messages are using, but the emails state it is using some sort of Microsoft encryption. I want to say that it is a mix as we deal with many companies, I would say most are probably OME. We have had a few come across regarding errors with Microsoft's Information Rights Management (IRM). This causes the same issues as described in the original post as well. our environment, as I understand it, is a Hybrid. We do not use any Microsoft encryption to my knowledge as well.

I think it is strange that most OME related emails can be opened when opened from the web browser version of outlook, but when opened from the desktop version it states the user was never granted permissions.

Side question: Where is the recipient's email address stored within Office or Azure after sending an OME email?

Answer 2

Hello,

Sadly, I am not sure what the companies that are sending these secure messages are using, but the emails state it is using some sort of Microsoft encryption. I want to say that it is a mix as we deal with many companies, I would say most are probably OME. We have had a few come across regarding errors with Microsoft's Information Rights Management (IRM). This causes the same issues as described in the original post as well. our environment, as I understand it, is a Hybrid. We do not use any Microsoft encryption to my knowledge as well.

I think it is strange that most OME related emails can be opened when opened from the web browser version of outlook, but when opened from the desktop version it states the user was never granted permissions.

Side question: Where is the recipient's email address stored within Office or Azure after sending an OME email?

Answer 3

Hi Jordon,

Have a nice weekend. I am following up this thread and just want to know if you need any assistance.

Regards,

Joey

Answer 4

Hi Jordon,

Welcome to post in the community.

From your description, may I know which 'Microsoft's encryption' you using is, like Office Message encryption(OME), Secure/Multipurpose Internet Mail Extensions (S/MIME), etc? It can make us further know your current situation. Besides, as you mentioned your organization deploy SSO, we'd like to verify which the organization's environment, like pure-cloud or hybrid?

Looking forward to your update.

Regards,

Joey