Auto-Decrypt

When the Turn on automatic decryption of encrypted emails is enabled, ActivClient saves a decrypted version of encrypted emails in order to provide access to the email later, even when the decryption key is no longer available. This feature is specifically useful for deployments that do not have a key backup and recovery mechanism in place.

The auto-decryption process is as follows:

  1. User opens the received encrypted email.

  2. Email and attachment are decrypted (it might require PIN authentication).

  3. A decrypted copy of the encrypted email is saved in the current folder. Any email digital signature is preserved.

  4. The encrypted version of the email is moved to the Deleted Items folder.

These steps apply to the initial email, regardless of its location, including when the initial email is in the Deleted Items folder. In the latter case, both the decrypted and encrypted versions of the email are located in the Deleted Items folder at the end of the process.

Note: Depending on ActivClient PIN caching configuration, PIN authentication might be required several times.