|⚠ NOTE! In case that you aren’t running under “Pro” plan and your user type isn’t an “Admin”, you will have to upgrade your plan to “Pro”.|
Navigate to "My Plan" page and verify that your plan type is "PRO" and your level is "Admin".
Navigate to “Outbound Management” (Shield icon)
The email relay section will be locked because you have no verified domains yet. Click on the “Domains” tab to continue.
This is a quick overview of the domain verification process. To view the full guide click here - https://trustifi.com/docs/general/domain-verification/
Now, we will need to add the domain used to send emails. Continue by clicking on the “Add Domain” button.
After adding the domain, you will have to copy and import the records to your DNS provider (e.g. DNS Made Easy, GoDaddy). Continue to the next step after all the DNS records have been imported to your DNS environment.
Note: You can also click on "Download records CSV" from the "Actions" menu to save these records as a CSV file.
After you have added all the DNS records to your domain, click on “Check if verified” to see if the status changes to “Verified”. Continue to the next step only if the domain has been verified.
Note: Depending on your DNS system, your domain may take up to 24 hours to update DNS records.
In this part, you will need to enable the Email Relay toggle, and copy the “Email Relay key” which is the secret key that will be used to authenticate the transport flow of your emails.
At the "Plan Settings" tab, scroll to the "Email Relay Integration" section and click on the toggle to enable.
After the integration was enabled, your secret key will be generated. You can click on the "copy" button to copy the Email Relay secret key for later use.
Microsoft Exchange Admin Center
Navigate to the “Exchange admin center” via the following link – https://outlook.office365.com/ecp/
After you have logged in, navigate to the “Mail flow” – “Connectors” page.
Navigate to the “Connectors” tab.
In this section, you will have to create a new connector by clicking on the “New” (Plus icon) button.
Here, you will have to select the mail flow scenario. At “From” select “Office 365”, and at “To” select “Your organization's email server” and continue by clicking “Next”.
In the "Name" field, enter the following name: "Trustifi Outbound Connector (Send)", you can also add a description (optional).
Continue by clicking on "Next".
Select “Only when I have transport rule set up that redirects message to this connector” and continue by clicking “Next”.
Now we will need to select the route type for the smart host, select “Route email through these smart hosts” and click on “Add” (Plus icon).
Add “smtp.trustifi.com” (Without double quotes) to the smart host’s field and continue by clicking “Next”.
Verify if the smart host is added to the list, continue by clicking “Next”.
Now we will have to configure the smart host by selecting “Always use TLS” (First checkbox), selecting “Issued by a trusted certificate authority (CA)”, selecting the checkbox, entering “*.trustifi.com” into the field and continuing by clicking on “Next”.
Verify and confirm that all the settings are correct. Continue by clicking “Next”.
Here you will have to add an email address other than the one being set-up for the email relay. Use your personal email for this quick test.
Add your personal email address to the email address field. Continue by clicking “OK”.
Make sure the personal email address existing in the list. Continue by clicking “Validate”.
After the connection check will be done, you will receive two statuses, one for the connectivity which must be “Succeeded”, and the second one “Failed”. We can ignore the “Failed” status, it was failed due to missing the secret key which we will add in the next steps.
Confirm the warning by clicking on “Yes”.
Disabling Rich-Text Format (RTF)
Note: For a detailed explanation of the required changes to "Remote domains", please read this article.
Under "Use rich-text format" select "Never".
Under "MIME character set" and "Non- MIME character set" select "Unicode (UTF-8)".
Support "Out of Office" (OOF)
Step 26 – Allowing external reply types
Under "Out of Office automatic reply types" select "Allow external and legacy Out of Office replies" and click "Save".
Now we will have to navigate to the Rules tab to create a new rule to use the connector.
At the “Rules” page, click on the “New” (Plus icon) button and select “Create a new rule”.
Click on “More options” to expand the options of the rule creation.
Name the new rule that will be used for the Trustifi Email Relay. Continue by hovering over “The sender” and select “Domain is”.
Select “Domain is” and continue to the next step.
Add the domain that will be used to send emails through Trustifi Email Relay.
NOTE: Add here all the domains you want to be connected through the Trustifi Email Relay. In case you are adding more than one domain, make sure you added and authenticated him. (See Step 4, Step 5 and Step 6)
Add new condition by clicking “Add condition”.
Hover over “The sender” and select “Is external/internal”.
Select “Is external/internal”.
Select “Inside the organization” and apply by clicking “OK”.
Hover over “Redirect the message to” and select “The following connector”.
Select “The following connector”.
Select the connector as you named him at the previous step at “Connectors” tab.
Add a new action by clicking on “Add action”.
Hover over “Modify the message properties” and select “Set a message header”.
Select “Set a message header”.
Click on “Enter text” and enter “x-trustifi-creds” (Without double quotes) at the message header field.
Enter “x-trustifi-creds” (Without double quotes) in the message header field. Continue by clicking “OK”.
Click on “Enter text” and paste your secret key from the Trustifi Outbound Management (Plan Settings) at the header value field.
Paste the secret key you have copied from the Trustifi Outbound Management (Plan Settings). Continue by clicking “OK”.
Step 47 – Creating an exception
Click on “add exception” and hover over “Sender is…”, then click on “IP address is in any of these ranges or exactly matches”
Step 48 – Adding the exception IPs
In the pop-up window, enter the following IPs - 188.8.131.52 and 184.108.40.206 (click on the “+” icon to add each one) and then click on “OK” to confirm.
Set the final rule properties as follows:
- Select the rule severity level to “High”
- Check the boxes for "Stop processing more rules" and "Defer the message if rule processing doesn't complete".
- Under “Match sender address in message”, select “Header or envelope” .
- Save the rule by clicking “Save”.