we have been utilising CRES for several years successfully using the content filter option for activating the option for senders, however I have been asked about the functionality that is mentioned in the blurb on the main page for CRES.
Enhanced email controls
Cisco Registered Envelope Service gives senders full control to terminate or recall emails and know exactly when an email was opened.
Read receipt: When a recipient successfully authenticates and receives the encryption key to decrypt the message, the Registered Envelope Service delivers a read receipt to the sender in seconds.
Guaranteed message recall: By selecting the recall option, the key to decrypt the data expires and makes it impossible to access the message.
Message expiration: Set an expiration date before sending a message, at which time that message is terminated. After the expiration date, the information becomes inaccessible.
Control over responses: Forward, Reply, and Reply All can be selected or disabled only if your company authorizes it.
Whenever anyone attempts to recall a sent message a new registered envelope is created for the message recall communication and nothing else occurs, is there a supported configuration guide for this functionality? There is literally no mention of it anywhere in any of the documentation for CRES.
yes as I understood it that is exactly how I would expect it to work, however; in practice this is not occurring, the key is not made invalid and the email can still be opened all that occurs it that another secure envelope is created the recall is being processed as an email in its own right, so I am just trying to figure out why this is happening.
Somehow the recall message is being picked up by the filter which would seem possible but how do I prevent this from occurring,
For all versions of the Email Security Appliance (ESA) and Security Management Appliance (SMA), some Secure Sockets Link (SSL) certificates issued from the QuoVadis root certificate authority (CA) trust chain before 2021-03-31 cannot b...
Automation and programmability for networking and security are increasingly important topics. Every release since ISE 1.2 has included new REST API capabilities to better automate and integrate ISE with the rest of your network, appli...
The latest iteration (v2.3.4) of the Cisco Secure Firewall Migration Tool adds public beta support for S2S VPN migrations from ASA:
Policy-based (crypto map) Pre-Shared key authentication type VPN configuration to Firepower Management Center
Cisco Defense Orchestrator (CDO) is a cloud-based, multi-device manager that manages security products like Adaptive Security Appliance (ASA), Firepower Threat Defense next-generation firewall, and Meraki devices, to name a few.
We make improvement...
This document presents the ISE data limiting best practices that can dramatically improve the system performance on ISE.
Your deployment may be impacted if the alarms tab on ISE shows High load average, high CPU or high memoy usage alarm...