Custom Branding
This feature might not be available for all customers yet.
This feature is only available with a Sophos Email Portal Encryption add-on license.
You can customize the branding of your encrypted messages and encryption web portal with your organization's logo and colors. This ensures that all relevant sections of the encryption web portal and encrypted messages reflect your corporate identity.
Custom branding includes several other features, such as personalizing notifications with your organization's address and contact information, turning on message recall, allowing recipients to log in using social connectors, and so on.
Create a custom encryption web portal
You can customize your encryption messages, portal branding, and encryption features.
To create a custom encryption web portal, do as follows:
- Go to My Products > General Settings > Encryption Settings.
- Click Download Branding Guidelines, and review the guidelines before you proceed.
-
In Portal Name, enter a name for your encryption web portal.
Your portal name appears in encryption messages, notifications, and descriptions of the service.
-
In Portal Logo, click Browse to upload your corporate logo file from your local computer.
Note
The maximum file size is 5 MB, and the file must be in JPEG, PNG, or GIF format. The file will be resized to 225 by 88 pixels to fit the required dimensions.
Your corporate logo appears next to the portal name in the encryption messages and notifications.
-
In Portal Colors, set the Background Color and Foreground Color using hexadecimal or RGB notation. For example, white is
0xFFFFFF
or255, 255, 255
.Note
The background color should match the background color of your website where your corporate logo is displayed. The foreground color is used for the service name and other titles.
-
In Email Domains, review the listed domains. If you notice a domain is missing, contact Sophos support.
Account Name, Region, and Email Domains are automatically filled and can't be modified.
-
In Administrators, select the users who'll perform administration tasks such as managing recipient accounts, which includes resetting a recipient's password if forgotten, running reports, and so on.
-
Turn on Multi-factor Authentication.
When you turn this setting on, users must authenticate using multi-factor authentication (MFA) through a time-based one-time password (TOTP) authentication app, such as Google Authenticator, Microsoft Authenticator, or Authy.
-
In Time Zone, select the appropriate time zone for dates appearing in notification emails and the encryption web portal.
- In System Email Address, select the email address to use as the "From" address on "no-reply" notifications, such as registration emails.
-
For Customize recipient features, set the default languages for the activation email.
We recommend that you select a limited number of languages to avoid making the message look suspicious. The languages chosen by the recipient will be used for all subsequent notifications.
You can also configure the following settings for recipients of your encrypted messages:
- Reply All: Allows you to reply to all recipients of portal-encrypted emails.
- Social Connector Sign-In to Secure Message web-portal: Allows your recipients to log in using the following OAuth social connectors: Facebook, Google, Windows Live, or Office 365.
-
Recipient security features
- 2-Step Verification via TOTP (Authenticator Apps): Requires 2-step verification using authenticator apps to secure your recipient's access to the encryption web portal. You can leave this setting as Optional if you want the recipient to decide whether to use multi-factor authentication.
- Passwordless Login: Allows portal encryption recipients to sign in securely using biometric authentication, such as fingerprint or Face ID. This setting works on most modern devices, including mobile devices, laptops, and other hardware that supports biometric authentication.
- Challenge Questions: Requires recipients to answer three challenge questions when they create a secure message portal account. These questions are later used for password recovery.
- Alternate Address: Requires recipients to provide an alternate email address when they create a secure message portal account. If they forget their password, a recovery message will be sent to the alternate address.
-
In Customize sender features, you can configure the following settings:
- Message Expiry Period: Select a message expiration period from 1 to 30 days.
- Customize Message Template: Add any additional text you want to appear on encrypted envelopes.
- Sender Notification: Sends an email notification to the sender when their messages are encrypted, collected, or expired. The notification includes a link to the encryption web portal, allowing the sender to view the message status or recall the message.
-
(Optional) In Special Instructions, enter comments, feedback, or instructions that will be included in your custom branding provisioning request.
We'll try our best to accommodate your instructions. If we can't accommodate them immediately, we'll note them as feedback for future enhancements.
-
Click Submit.
-
In the confirmation dialog, click Confirm.
Warning
After you submit the custom branding request, you can't modify it.
Your request for custom branding setup is submitted for provisioning. This process takes approximately seven business days. After provisioning is completed, the custom-branded encryption messages and encryption web portal will be available for use.