Access Delegates can read encrypted e-mails

Hello Guys,

posting this in hope someone can help us out… been looking for a long time for a solution but no luck.

The issue we face is that encrypted e-mails that are sent to some of our Managers are sometimes accessible by their EAs. All the Mails that have this problem are from the same sender. Most of the times the issue happens when the sender is sending the Mail connected via our VPN.

For example: User “Jeff” sends encrypted e-mail to “Alice” and “Bob” from Home.

“Alice” and “Bob” receive the Mail and are able to read it, it appears with a Key to show its encrypted. Now, the Secretary of “Alice” who has Author Access to the Mailbox, is ALSO able to read this e-mail, when she clearly should not!

The Secretary of “Jeff” is sometimes able to read the encrypted Mail from SENT Folder too.

So far, we tried different solutions, like resetting Mailbox ACLs, replacing the ID File, recertifying the “Jeff” User, upgrading Domino to the latest Hotfix, no luck. Very few Information available elsewhere.

In hope someone has an Idea on what to look for, personally I’m out of solutions.

Cheers!

Chris

Subject: New spr is created to track this intermittent issue for the specific sender

Description

SJCN8HZLWT Mail - Author delegate can Read mail onwer’s encrypted mail Sometimes (Only from a Sender & sent from VPN)

Need more info -

• Has mail owner ever edited the encrypted doc that may cause it to be decrypted. ( ex Edit then save the doc, or set Follow Up flag…)

• Could you please try to reproduce it w/o going through VPN

Thanks in advance

Subject: Tested with User - results

Hello,

I tested this with the User. He has not touched the Mails after sending them, and both “Modified” Fields seem to confirm this on the tested mails.

We also confirmed the issue seems to appear only when using the VPN Connection, even after multiple tries unable to reproduce on the direct connection.

Thanks!

C.