Setting up Paubox Encrypted Email for Office 365 contains two parts: (1) A DNS record change that allows Paubox to relay email for your domain (2) Adding a connector in Office 365 to integrate with Paubox for in-transit encryption of email.
You may optionally also route all of the inbound email for your domain to Paubox for inbound security (see section III for instructions).
Before making these changes however, make sure we have verified that you are correctly set up on our end first. Click here to get started.
Part I: DNS record change
Log in to your domain host and look for a record of type "TXT" that has this value:
v=spf1 include:spf.protection.outlook.com -all
change this record so that it has the value below:
v=spf1 include:_spf.paubox.com include:spf.protection.outlook.com -all
Before making these changes however, make sure we have verified that you are correctly setup on our end first. Click here to get started.
Part II: Setting up Encryption for Office 365
You will need to use the Office 365 Exchange admin center to configure your remote, outbound email to go through Paubox. Here’s how you do it:
- Go to https://outlook.office.com/ecp to access the Exchange admin center. If you haven’t logged in already, you’ll need to do that first in order to be granted access.
- On the left menu, click mail flow and then connectors. You should see a screen like this:
- Click + under Outbound Connectors
- On the pop-up window that follows, enter Paubox in the *Name field. Select Partner as the Connector Type. Under Connection Security, check Self-signed certificate.
- Scroll down to the section titled Outbound Delivery. Check Route mail through smart hosts.
- click + and then Enter outbound.paubox.com under Add Smart Host and click Save.
- Scroll down to the section titled *Recipient domains. Click + and enter * under "edit domain". Click "OK".
- Click Save.
- The Paubox connector for Office 365 is now live!