Certificates can be collected for all incoming mails if configured
OCSP is used to check the status of certificates with the online certificate status protocol
CRLs (Certificate Revocation Lists) can be activated in order to check for revoced certificates (in case of detected misuse)
If the REDDOXX CA is enabled, certificates for sender e-mail adresses can be automatically created
The default certificate validity (for certificates created via your own certificate authority) can be set (it is 365 days as default)
Signature-Settings
If Clear signing is set, the signature is added as separate MIME part to the E-mail
Sign before crypt can be used to sign the E-Mail prior to encryption. The advantage here is that the signature cannot be detected using so-called man-in-the-middle attacks.
The certificate chain can be attached to the signature
Encryption-Settings
Include Sender key is required, if the sender later wants to receive the mail from the mail archive, so it can be decrypted again
License
Mailsealer licenses can automatically be assigned if "Auto assign licenses" is selected
The licenses will only be assigned, if a mail could be encrypted via MailSealer
If public or private key for mail encryption are not available, and the mail could not be encrypted, no license will be assigned accordingly