Two-Factor Authentication and OID (Single Sign-On) Configuration for Web Email Protection on PGP Encryption Server
Article ID: 281645
Updated On:
Products
Issue/Introduction
PGP Encryption Server (Symantec Encryption Management Server) has the capability to send sensitive data without the need of the recipient installing any software, or owning any PGP Keys or SMIME Certificates. This functionality is included in Web Email Protection and PDF Messenger. The Web Email Protection functionality uses password authentication, and starting with PGP Encryption Server 11, SMS has been added for two-factor Authentication.
For General Information on how to use Symantec Web Email Protection, see the following articles:
153186 - How to use your Symantec Web Email Protection account for secure communications
Resolution
To configure the SMS Authentication for Web Email Protection:
Step 1: Login to the PGP Encryption Server
Step 2: Click on Services, then Web Email Protection
Step 3: Click on Options and Edit.
Step 4: Once you click Edit, the following appears:
Step 5: To enable Two-factor Authentication, check the box, and then select the applicable two-factor option you would like to use:
Enter the needed information and configure the respective SMS services to inter op with PGP Encryption Server.
Once this is configured, when the user receives a Web Email Protection Email, they will receive and email, as well as an SMS text with a code to login.
More information can be found with the product documentation.
Additionally, using an OpenID (OID) service, such as Siteminder, or Okta, can integrate Single Sign-On (SSO) functionality so that users can login to Web Email Protection using an OID service.
For more information on this SSO functionality, see our product documentation.
For further guidance, reach out to Symantec Encryption Support.
Additional Information
IMSFR-1001
Feedback
