Provisioning the Messaging Gateway's Content Encryption feature
search cancel

Provisioning the Messaging Gateway's Content Encryption feature

book

Article ID: 413037

calendar_today

Updated On:

Products

Messaging Gateway

Issue/Introduction

Beginning in September 2025, with the release of Messaging Gateway 10.9.2, the Content Encryption feature will no longer require a separate license to enable and configure. 

  • The configuration page at Content > Content Encryption will allow Messaging Gateway to use an arbitrary SMTP relay host for messages that receive the Deliver with Content Encryption policy action.
  • New licenses and renewals specifically for the Messaging Gateway Content Encryption feature will no longer be sold.
  • Customers who want to continue using Email Content Encryption provided by Broadcom can license the Email Security Cloud Policy Based Encryption (PBE-PGP-EMAIL-SUB) or contract with an alternate, third party encryption vendor.

Note: The SMG 10.9.2 licensing page (Administration > Licenses) still shows a line item for Content Encryption. This license status is now ignored by the Messaging Gateway control center and will be removed in a future release.

Resolution

Provisioning Content Encryption after license expiration

  • The previous Messaging Gateway Content Encryption license / SKU has been discontinued and the Content Encryption configuration page is unlocked in SMG 10.9.2.
  • The Deliver with Content Encryption policy action will continue to operate unlicensed based on the configuration in Content > Content Encryption.
  • The previous Content Encryption relay through Broadcom's Email Security Service (ESS) may continue to operate for some unspecified length of time but this should not be relied on.
  • SMG Customers can choose to purchase a license for the new Email Cloud PGP Encryption product (PBE-PGP-EMAIL-SUB) for use as the Content Encryption relay or to engage with a third party encryption provider for email encryption services.

To renew Content Encryption through Broadcom

  1. Engage with Broadcom or your partner sales team to buy a license for Email Cloud PGP Encryption
  2. Complete and return the provisioning form that is included with the Email Cloud Policy Based Encryption license to [email protected], even if the Content Encryption had already been provisioned. Reprovisioning the service for Broadcom's Policy Based Encryption is required to update the content encryption relay
  3. Upon returning the provisioning form, a Global Customer Assistance case will be created to provision the ESS Cloud resources and relay
  4. When provisioning is complete, the administrative contact on the provisioning form will be notified via email of the SMTP host and port to use for the Content Encryption relay
  5. Configure Messaging Gateway to use the provided relay host via the Content > Content Encryption page

To renew Content Encryption through a third party encryption service provider

  1. Engage with your encryption service provider of choice and complete their provisioning process
  2. The encryption provider should provide a hostname or IP address to which SMG should deliver messages for content encryption
  3. Configure Messaging Gateway to use the proovided relay host via the Content > Content Encrytion page

Note: Third party encryption providers may have additional requirements to access their content encryption servers.

Powered by Wolken Software