• For administrators
  • Configure SalaX Secure Mail
  • Authentication methods

Authentication settings

To configure and enable authentication methods, go to Settings > SalaX Secure Mail > Configuration > AUTHENTICATION SETTINGS

Authentication methods

The below authentication methods are available in Secure Mail. The Password, Email One-Time Passcode, and Cookie methods are enabled by default. SMS One-Time Passcode and Social Security Number (SSN-Auth) methods are not enabled by default. Admins can enable or disable it as described below.

Email One-Time Passcode (Email-OTP): a One-Time Passcode that is sent to the user's email address.

SMS One-Time Passcode (SMS-OTP): a One-Time Passcode that is sent to the user as a text message.

Password: the user uses a predefined password to access Secure Mail.

SSN-Auth: the user uses Social Security Number (SSN) or National Identity Number (NIN) to access Secure Mail. This authentication method is integrated with trusted third-party providers.

Cookie: a cookie is stored in the user's browser.

⚠️ When using the Cookie method,

  • The recipient receives a link that can be initially accessed from any device or by anyone having access to the link.
  • Once the link is opened, the recipient can select the authentication method to reaccess the message.
  • If the recipient chooses the cookie method, they must use the same device and browser to reaccess the message. Accessing the message from a different browser or after clearing cookies is impossible. 

Enable SMS One-Time Passcode authentication method

  1. Configure the SMS sending script on the SMS Script page before enabling.
  2. If a script is already configured, select Enable.
  3. Scroll down to the bottom of the page and click Save Changes to apply your settings.

Enable SSN-Auth method

  1. Configure authentication providers on the Auth providers settings page before enabling.
  2. If authentication provider settings are already configured, select the provider, such as Signicat.
  3. Scroll down to the bottom of the page and click Save Changes to apply your settings.

Define password requirements

To define the minimum password requirements for accessing Secure Mail, go to Settings > SalaX Secure Mail > Configuration > Authentication settings.

  1. Enter the minimum password length. The minimum allowed value is 10.
  2. Select any other password requirements. You can select the following requirements.
    • Require special characters
    • Require lower case characters
    • Require upper case characters
    • Require numbers
    • Disallow use of commonly used passwords
  3. To save your changes, scroll down to the bottom of the page and click SAVE CHANGES.

Authentication flow when replying to a secure mail

Secure Mail supports flexible authentication choices during messaging.

  • Sender control: Senders can select a specific authentication method among available ones (e.g., SSN-Auth, Password) for their recipients when composing a message.
  • Recipient override: Recipients can adjust the authentication method for a reply using the Security Settings button on the compose page. If no alternative is chosen, replies will automatically use the system's default authentication method as defined in the mail-sending policies.

The default authentication method is automatically set in every mail, including replies, unless the sender changes it.

Example:
Alice sends Bob a message and selects SSN-Auth. Bob will need to authenticate with SSN to access Alice's message. However, when Bob replies, his message automatically uses the default authentication method, e.g., Email-OTP, of the mail-sending policy (unless Bob manually selects another available authentication method, such as SSN-Auth).
The same applies when Alice replies to Bob's reply.

Reset authentication settings

To reset authentication settings to their default values, refer to Reset all mail setting configurations.

Was this page helpful?