Desktop Email Encryption

Please could somebody advise the best practise configuration for the following:

Running PGP 3.2.1 MP5 with managed PGP Desktop

Mail policy should be controlled by the PGP server. The enviroment is as follows:

client ==> Exchange ==> PGP Universal server ==> Fortimail ==> Internet

I have created a unified mail proxy to handle mail both ways. An auto matic mail route was created for the domain pointing to the exchange server

There is 1 managed domain which equals the mails addresses e.g. client.emaildomain and 1 mail route as mentioned above. Do I need this route or must I create a wildcard route?

Do I need to include a local windows domain example client.local as a manged domain?.

is there anything else I need to do?

Since you have an email appliance, instead of using an Unified proxy, prefer to define an Inbound and an Outbound proxy - this will allow you to properly configure it and better understand the mail flow see HOWTO77028.

In a regular network there is usually not a need to configure Mail Routes (only used to bypass MX records) see TECH149370.

The managed domain in the PGP server must match the enrolled email domain.

Enable Messaging in the Consumer Policy.

Download the PGP client with the proper configuration, see HOWTO42101. (And enroll the user).

Thank you for the information.

I only have 1 IP address on the Universal Server so It seems I will have to use the Unified proxy option.