question

MrPeterson-4867 avatar image
0 Votes"
MrPeterson-4867 asked MrPeterson-4867 commented

OME encryption for .e ending in mail address

Hi,
In our hybrid environment we have a send connector configured that sends mails to a third party encryption smart host if a mail address contains .e ending (john.snow@contoso.com.e).
Can we replicate the same logic for Office Message Encryption service? So mails would be encrypted, if .o ending is in recipients address?

office-exchange-server-administrationoffice-exchange-server-mailflowoffice-exchange-hybrid-itpro
· 3
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Are suggestions provided below helpful to you? Or you have any update about the issue?

1 Vote 1 ·

Any progress so far?

1 Vote 1 ·

no, the answers were unhelpful

1 Vote 1 ·
AndyDavid avatar image
0 Votes"
AndyDavid answered AndyDavid commented

A mail flow rule should do it.
https://docs.microsoft.com/en-us/microsoft-365/compliance/define-mail-flow-rules-to-encrypt-email?view=o365-worldwide

You could have the criteria be the recpient address contains 'com.o' for example

16059-image.png



image.png (3.5 KiB)
· 3
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

In this case an e-mail comes back with an error:
"Your message couldn't be delivered. The Domain Name System (DNS) reported that the recipient's domain does not exist."

1 Vote 1 ·

Ok, thats a different issue.

Dot O domains require some additional work it seems in DNS:
https://www.namepros.com/threads/what-is-exactly-the-domain-extension-o.1181338/
https://wiki.opennic.org/opennic/dot/o

But that mail flow rule should work if the domain is accessible. You may need to talk to whowmever owns it.











1 Vote 1 ·

Registering a new domain is not really a solution.
In send connector you can specify an address space *.o , so all mails containing that ending will be routed to smarthost, that's what I'm actually asking, is there a way to do it with OME.

1 Vote 1 ·
AndyDavid avatar image
1 Vote"
AndyDavid answered AndyDavid edited

If you want to also use that mail flow rule to also route to a specific send connector as well, you can do that with Conditional Routing.
Note that you have to create a connector that is designed for a mail flow rule and that connector can point to a smarthost.

https://docs.microsoft.com/en-us/exchange/mail-flow-best-practices/use-connectors-to-configure-mail-flow/conditional-mail-routing

then once created:

For *Do the following..., choose Redirect the message to... and then specify the following connector. The select connector box appears. Choose the Outbound connector you created previously.16089-image.png



Otherwise, thats the only real way to force OME on messages.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.