Encrypt Confidential Messages with Lotus Notes

Article:TECH149169  |  Created: 2008-06-06  |  Updated: 2012-01-16  |  Article URL http://www.symantec.com/docs/TECH149169
Article Type
Technical Solution


This article describes how to encrypt email messages with Lotus Notes.

When secure email messaging is enabled, PGP Desktop monitors the email traffic between your email client and your mail server. Depending on the circumstances, PGP Desktop will intercede on your behalf to encrypt, sign, decrypt, or verify messages.

Default Confidential Rule

In a stand alone environment, PGP Desktops default rule of Require Encryption: [PGP] Confidential has a sensitivity condition that triggers encryption based on a confidential flag.

The default rule to Always Encrypt Sensitive Messages in PGP Universal Servers Mail Policy, has a condition that triggers encryption based on a confidential flag. This rule is contained in the Policy Chain: Outbound policy.

The default confidential rule is defined when the Message Sensitivity is confidential. Message Sensitivity is mapped in Lotus Notes to a message header rule and also to the header $KeepPrivate attribute.

The equivalent mapped message header rules to the confidential rules are the following: 

  • Message Header Sensitivity is Company-Confidential 
  • Message Header $KeepPrivate is Company-Confidential


This article details how to enable Lotus Notes email clients to use the Confidential rule when encrypting messages.

The default confidential rule can be triggered by Lotus Notes using the Prevent Copying Method or the Mood Stamp Method. Use the steps detailed below to enable Lotus Notes to use the confidential rule to encrypt messages.


Prevent Copying Method

  1. Open Lotus Notes.
  2. Compose a new message.
  3. Click the Delivery Options action button.
  4. On the Basic tab, select the Prevent Copying checkbox.
  5. Click OK.
  6. Send the message.


Mood Stamp Method

To create a confidential rule that uses Mood Stamp instead of Prevent copying, add the following rule to the PGP Desktop local policy or the PGP Universal Server Mail Policy. Then apply the Confidential Mood Stamp in Lotus Notes.

PGP Desktop  

  1. Open PGP Desktop.
  2. Select your messaging service in the PGP Messaging control box.
  3. In the Messaging Service Account Properties, click the Edit Polices button in the Security Policies section.
  4. Click the New Policy... button.
  5. Type a name for the policy in the Description field.
  6. In the conditions section, click the drop-down arrow and select Message Header.
  7. Type tmpSenderTag and C for the conditions.
  8. Click OK. The new policy now appears in the Security Policies list.
  9. Click the Done button to complete editing the Security Policies.


PGP Universal Server - For Managed users of PGP Desktop  

  1. Open the PGP Universal Server administrative interface.
  2. Select Policy>Mail Policy>Policy Chain: Outbound.
  3. Click the rule Always Encrypt Sensitive Messages.
  4. Click the Edit Conditions button in the Conditions section.
  5. Click the triangle in the upper right corner of the condition to edit the condition.
  6. Click + Add Condition.
  7. Select Message Header from the drop-down list.
  8. Type tmpSenderTag and C in the remaining fields.
  9. Click Save to apply the changes to the rule.


Configure Lotus Notes to use the Mood Stamp:  

  1. Open Lotus Notes.
  2. Compose a new message.
  3. Click the Delivery Options action button.
  4. On the Basic tab, select Confidential from the Mood Stamp drop-down list.
  5. Click OK.
  6. Send the message.

Legacy ID


Article URL http://www.symantec.com/docs/TECH149169

Terms of use for this information are found in Legal Notices