XG: Allow SPX Data protection rules to use keywords
On the XG - version 16 in MTA mode you can only use predefined CCLs and are limited in what you can look for in Data protection to encrypt emails.
Like legacy mode and version 15 - you can use a keyword to encrypt emails. For example any emails with Subject: [Encrypt] - SPX encrypt this email. This is a very crucial feature that should exist.
Sent on behalf of client.
Custom Rules/Expressions should be part of any data leakage prevention/data control solution.
While this is a feature that I want too, I think you have some skewed expectations. The XG is definitely superior to the Sophos Email Appliance when it comes to network protection. But a dedicated email email protection product like SEA will most certian be superior at email related fuctions and an all-in-one UTM/NGFW
James Cramer commented
This needs to be done already Sophos.
This is a deal breaker for a customer right now migrating from SEA to email encryption in the XG.
How is it possible that key functionality is not present in a "supposedly" superior appliance?
Morten Ryom commented
Request made 2 years ago and still no change.
If this (and data security) is not in focus how does Sophos want their customers to handle GDPR? Change firewall?
This is getting serious as GDPR is already active and pr. 1 Jan 2019 ALL private companies in Denmark are required to encrypt ALL mails containing classified or sensitive information.
Need this functionality asap. had it in the old SG world.
Ari Einarsson commented
A feature that has been available in the SG - and is essential to (some) customers.
Customers that are struggling to cope without!
This would be a great feature! Must have for healthcare applications
Boris O. commented
Hi, I thin a subject keyword for the email encryption trigger is a good idea.
I use very often my iPhone and then in can’t encrypt my mails ...
Tyler Wallace commented
I agree. I was very disappointed that this feature was missing. I am using Exchange so I am going to try to setup a rule to edit the X-Header.
This is a snip from Firewall OS Help
"If you do not use Outlook you can also trigger SPX encryption by setting the header field
X-Sophos-SPX-Encrypt to "yes"."