Using SPX Passwords

  • What can email recipients do to recover, restore, or change their passwords?

    Depending on which features you have made available, recipients may have a variety of options, or none at all. When you select one or more End user password options on the Password Settings page of SPX Template wizard, text containing template variables is automatically inserted in the instructional text that is delivered to recipients with each encrypted message. Links are created in the text that recipients can use to visit password management pages on the SPX portal.

    Note
    When recipients are required to enter a password to access the SPX portal, they are allowed six login attempts. Following that, they are locked out of the portal for 24 hours.
  • How do recipients view encrypted messages if they've lost their password?

    If you have enabled the Password recovery option, recipients can click the link included in each instructional message to access a page on the SPX portal where passwords are recovered and reset. Recipients are then prompted to answer a least one challenge question in order to retrieve the password.

    If you deployed SPX encryption prior to the introduction of the password recovery and reset features, or if you did not enable these features during the initial deployment of the appliance, then there are two options:
    1. If recipients know their existing password, they can use the SPX portal to change the password. If password recovery is enabled, they can then set a question or questions that can be used for future recoveries.
    2. If a recipient has forgotten the current password, you can establish a new password using the Account Reset option on the SPX Encryption tab. The recipient can then choose a password question or questions that can be used for future recoveries.

    Recipients who were issued passwords prior to the availability of the recovery feature, will not have access to previous encrypted messages if they have forgotten their password. Encrypted messages cannot be read without the password that was active during the period that those messages were sent.