Secure Mail Gateway

Introduction

The Relution Secure Mail Gateway (SMG) allows to prohibit or allow the synchronization between a mobile device and the Exchange server according to defined rules. It is possible to define the SMG for each organisation seperately on one Relution server.

To use this feature, please make sure, that your Exchange server is securely operated in your internal network (not accessible from outside) and the Relution instance is installed in your DMZ or has a secure connection to your Exchange server.

Usage

You are a member of the group “Administrator” or “Device Manager”.

To use the Relution SMG in your organisation, you have to enable it in the settings.

image

To grant the Relution SMG, which works as a proxy, access to your Exchange server, you have to provide the url of your Exchange server and the Exchange domain.

Now you have diverse options on who you want to be able to synchronise their mails, contacts and more.

Following options are available:

Allow devices not supported by Relution: Devices which cannot be enrolled into Relution like non Android or iOS devices, Desktops and Notebooks

Allow “Bring your own devices”: Devices which are marked as BYOD by the administrator

Allow “Corporate owned devices”: Devices which are marked as COD by the administrator

Allow devices with an unknown ownership: Devices which are not marked as COD or BYOD by the administrator

Allow Android devices: Allows Android devices in general or specify which versions are allowed to synchronize

Allow iOS devices: Allows iOS devices in general or specify which versions are allowed to synchronize

Allow compliant devices: Allows only devices which are enrolled and currently in the state “compliant”

Allow deleted devices: Allows only devices which are enrolled and currently in the state “deleted”

Allow inactive devices: Allows only devices which are currently in the state “inactive”

Allow non compliant devices: Allows only devices which are enrolled and currently in the state “non compliant”

Allow withdrawn devices: Allows only devices which are currently in the state “withdrawn”

Combinations of these options are possible.

Hint: As authentication method “basic authentication” with username and password is possible. Authentication with client certificates is currently not possible.