Secure Mail settings (WorkPlace Persona policy)

You can configure specific settings in the WorkPlace Persona Policy for Secure Mail.

Configuring Secure Mail

The following settings are available for configuring Secure Mail:

Policy setting Description Supported devices
Mail Server The host name of the mail server that ensures devices are automatically approved. The automatic approval feature is supported for Exchange, Office 365, IBM® Traveler, and IBM Connections Cloud. iOS, Android, Windows Phone
Hostname of the ActiveSync Server The URL of the ActiveSync server. iOS, Android, Windows Phone
Use SSL SSL certificates provide secure, encrypted communication between the mail URL and the browser on the device. Enable the Exchange server to use SSL for authentication. iOS, Android, Windows Phone App 2.2+
Enable SSO Select this option to enable single sign-on (SSO) and configure the app client ID and the Office 365 endpoint URL. iOS 3.4+, Android App 6.10+
App client ID: Enter the app client ID that is generated when you register the app for the Azure AD tenant.  
Office 365 endpoint URL: Enter the default or configured Office 365 endpoint URL to access the Office 365 API invocations for the account. The default endpoint URL for Office 365 is https://outlook.office365.com.
Note: You can use a different endpoint URL than the default endpoint URL.
 iOS 3.95+, Android App 6.70+
Domain Name The name of the domain that is added when the domain user account is created. iOS, Android, Windows Phone
Email Address The email address of the Exchange account. This setting supports wildcards such as %UPN% or %username%@domain.com).
Note: Leave this field blank to automatically fill this field from the user email field in MaaS360®.
iOS, Android, Windows Phone
Account Username The user name of the account. iOS, Android, Windows Phone
Authentication Type The password that is entered manually by the user or the certificate that is uploaded from MaaS360. iOS, Android, Windows Phone
Use Exchange Web Services If this setting is enabled, Secure Mail supports advanced features (for example, calendar attachments and contact groups on Exchange 2010 SP2+) that are available for Exchange Web Services (EWS). This setting is supported on Exchange and Office 365 only. Make sure that you enable Exchange Web Services (EWS) on your mail server for devices.
  • Use Auto-discovery: The user provides their email address and password to configure their mailbox. This information is the minimum information that is required to set up Exchange Web Services (EWS).
  • Enable Delegation & Shared Mailbox Access: A user can add other users as delegates or add a shared mailbox. A shared mailbox is shared by multiple users who can read and send email messages, and also use a common calendar. For delegation, the delegated user can view email messages, contacts, and the calendar of the user who provided delegation. The delegated user can also act on behalf of the user who delegated access. This setting is supported on iOS 3.1+, Android 5.65+
  • Enable Subscription Based Notifications: This setting uses Exchange Web Services (EWS) to silently push notifications to the Secure Mail app on the device. Cloud Extender® is not required for users to receive push notifications. This setting supports Office 365, Exchange 2010, 2013, and 2016 servers, and iOS 3.1+ devices.
 iOS 3.1+, Android 5.55+
App Badge Count Specifies the areas that you want the app badge to count:
  • All Sections: All changes to items in the container are counted. For example, if you use the MaaS360 Secure Mobile Mail app and MaaS360 Secure Doc Sharing app, the count includes unread email messages, calendar changes, new documents, new email messages, and new tasks.
  • Unread Mails: Unread email messages are included in the count.
  • Don’t include Email/Calendar: All changes to items in the container are counted, except for new email messages and calendar changes.
 iOS 2.95+
Authenticate using WorkPlace Account Uses common WorkPlace credentials for email authentication. Users are not prompted to enter their credentials if they already entered their WorkPlace credentials. iOS 2.95+, Android 5.25+
Organize by Thread Organizes email messages by thread. This setting is applied during initial mail configuration only. Users can change this setting in the app under the Email Settings. iOS 2.98+, Android 5.32+
Default Signature Uses a default signature for the user in the email message. This setting is applied during initial mail configuration only. Users can change this setting in the app under the Email Settings. iOS, Android, Windows Phone
Set Logon Hours Sets the default logon hours for users to manage access to email servers. Choose between AD-based or policy-based logon hours.
Setting Type:
  • Choose the AD-based setting to use logon hours that are set from Active Directory (AD). This setting requires the User Visibility module in Cloud Extender.
  • Choose the policy-based setting to manually set the logon hours.
iOS App 3.5+, Android 6.00+
Enable Real-time Notification Users can view the badge count on the Secure Mail app for unread email messages and also configure notifications for new email messages and calendar invites. This setting is supported on Exchange 2007, 2010, 2013, 2016, and Office 365.

This setting requires Cloud Extender. Before you enable this setting, make sure that Cloud Extender is configured for new email message notifications. This setting also supports Traveler 9.0.1+ for iOS. Contact IBM Support for more details.

  

Configuring real-time email and calendar notifications

Enabling Real-time Notifications allows users to view the badge count on the Secure Mail app for unread email messages and to configure notifications for new email messages and calendar invites.

Click Enable Real-time Notifications to enable services.
Note: This setting is supported for Exchange 2007, 2010, 2013, 2016, and Office 365. This setting requires Cloud Extender. Before you enable this setting, make sure that Cloud Extender is configured for new email notifications. This setting also supports Traveler 9.0.1+ for iOS. Contact IBM Support for more details.
The following settings are available for real-time notifications:
Policy setting Description
Allow Real-time Notifications The MaaS360 app initiates an email notification subscription for the user. The MaaS360 Portal broadcasts the subscription request to all the Cloud Extenders that are running the Email Notification module and completes a successful subscription.
New Mail Notifications Notifies a user when a new email message is received. You can enable this setting for email messages from favorites, all email messages, or for no email messages.
New Calendar Invite Notifications Notifies a user about new calendar invites. Users can override this setting on the device.

Configuring calendar details

You can choose the days of the week that are a part of your work week, the time when your work day starts and ends, or the day of the week that you want to start your work week.

By default, the work week is defined as Monday through Friday with a work day of 9 A.M. to 5 P.M. The first day of the week is Sunday. The Week Starts on setting sets the first day of the calendar week and changes the calendar work days.

Configuring synchronization details

You can configure settings that synchronize email messages. The following settings are available for synchronizing email messages:

Policy setting Description Supported devices
Max days allowed to Sync Mail The maximum number of days that are allowed to synchronize email messages.
Note: The Unlimited value is not supported on Windows Phones.
 iOS, Android, Windows Phone
Default days to Sync Mail The default number of days that are allowed to synchronize email messages for new users.
Note: This value is set during new mail configuration only and does not apply to existing mail configurations.
iOS App 2.95+, Android App 5.25+, Windows Phone App 2.2+
Maximum period for Calendar to Sync The maximum number of days that are allowed to synchronize the calendar. iOS, Android, Windows Phone
Sync Frequency The app uses push-based synchronization or a specific time to check for new email messages. You can also disable the periodic synchronization and force the user to always synchronize email messages manually. Android
Manual Sync On Roaming The user manually synchronizes new email messages if the device is roaming on the network. Android
Custom headers for HTTP requests Use this setting if you are using a reverse proxy in front of your mail server and must specify the HTTP headers that are used for access control. iOS App 2.90+, Android 5.21+, Windows Phone App 2.2+