Trustifi admin portal
Step 1 – Verifying the plan and user type
| ⚠ NOTE! In case that you aren’t running under “Pro” plan and your user type isn’t an “Admin”, you will have to upgrade your plan to “Pro”. |
Navigate to "My Plan" page and verify that your plan type is "PRO" and your level is "Admin".
Step 2 – Navigating to Outbound Management
Navigate to “Outbound Management” (Shield icon)
Step 3 – Navigating to the domains tab
The email relay section will be locked because you have no verified domains yet. Click on the “Domains” tab to continue.
Adding new domain
This is a quick overview of the domain verification process. To view the full guide click here - https://trustifi.com/docs/general/domain-verification/
Step 4 – Adding a new domain
Now, we will need to add the domain used to send emails. Continue by clicking on the “Add Domain” button.
Step 5 – Verifying the domain
After adding the domain, you will have to copy and import the records to your DNS provider (e.g. DNS Made Easy, GoDaddy). Continue to the next step after all the DNS records have been imported to your DNS environment.
Note: You can also click on "Download records CSV" from the "Actions" menu to save these records as a CSV file.
Step 6 – Verifying the domain and navigating to the Plan Settings tab
After you have added all the DNS records to your domain, click on “Check if verified” to see if the status changes to “Verified”. Continue to the next step only if the domain has been verified.
Note: Depending on your DNS system, your domain may take up to 24 hours to update DNS records.
Step 7 – Enabling and generating the email relay secret key
In this part, you will need to enable the Email Relay toggle, and copy the “Email Relay key” which is the secret key that will be used to authenticate the transport flow of your emails.
At the "Plan Settings" tab, scroll to the "Email Relay Integration" section and click on the toggle to enable.
After the integration was enabled, your secret key will be generated. You can click on the "copy" button to copy the Email Relay secret key for later use.
Microsoft Exchange Admin Center
Step 8 – Navigating to the Exchange Admin Center – Mail flow
Navigate to the “Exchange admin center” via the following link – https://outlook.office365.com/ecp/
After you have logged in, navigate to the “Mail flow” – “Connectors” page.
Step 9 – Navigating to the connectors tab
Navigate to the “Connectors” tab.
Creating new connector
Step 10 – Adding new connector
In this section, you will have to create a new connector by clicking on the “New” (Plus icon) button.
Step 11 – Selecting mail flow scenario
Here, you will have to select the mail flow scenario. At “From” select “Office 365”, and at “To” select “Your organization's email server” and continue by clicking “Next”.
Step 12 – Naming and describing
In the "Name" field, enter the following name: "Trustifi Outbound Connector (Send)", you can also add a description (optional).
Continue by clicking on "Next".
Step 13 – Usage type
Select “Only when I have transport rule set up that redirects message to this connector” and continue by clicking “Next”.
Step 14 – Selecting route type
Now we will need to select the route type for the smart host, select “Route email through these smart hosts” and click on “Add” (Plus icon).
Step 15 – Adding the smart host
Add “smtp.trustifi.com” (Without double quotes) to the smart host’s field and continue by clicking “Next”.
Step 16 – Verifying if the smart host added to the list
Verify if the smart host is added to the list, continue by clicking “Next”.
Step 17 – Configuring the smart host
Now we will have to configure the smart host by selecting “Always use TLS” (First checkbox), selecting “Issued by a trusted certificate authority (CA)”, selecting the checkbox, entering “*.trustifi.com” into the field and continuing by clicking on “Next”.
Step 18 – Confirmation
Verify and confirm that all the settings are correct. Continue by clicking “Next”.
Step 19 – Validating the connector
Here you will have to add an email address other than the one being set-up for the email relay. Use your personal email for this quick test.
Step 20 – Adding personal email
Add your personal email address to the email address field. Continue by clicking “OK”.
Step 21 – Validating the connector
Make sure the personal email address existing in the list. Continue by clicking “Validate”.
Step 22 – Validation results
After the connection check will be done, you will receive two statuses, one for the connectivity which must be “Succeeded”, and the second one “Failed”. We can ignore the “Failed” status, it was failed due to missing the secret key which we will add in the next steps.
Step 23 – confirming the warning
Confirm the warning by clicking on “Yes”.
Disabling Rich-Text Format (RTF)
Step 24 – Navigating to the remote domains tab and editing the default
Note: For a detailed explanation of the required changes to "Remote domains", please read this article.
Step 25 – Disabling the RTF option
Under "Use rich-text format" select "Never".
Under "MIME character set" and "Non- MIME character set" select "Unicode (UTF-8)".
Support "Out of Office" (OOF)
Step 26 – Allowing external reply types
Under "Out of Office automatic reply types" select "Allow external and legacy Out of Office replies" and click "Save".
Step 27 – Navigating to the Rules tab
Now we will have to navigate to the Rules tab to create a new rule to use the connector.
Creating new rule
Step 28 – Creating new rule – adding new rule
At the “Rules” page, click on the “New” (Plus icon) button and select “Create a new rule”.
Step 29 – Expanding the options
Click on “More options” to expand the options of the rule creation.
Step 30 – Naming and configuring the sender type
Name the new rule that will be used for the Trustifi Email Relay. Continue by hovering over “The sender” and select “Domain is”.
Step 31 – Domain selection
Select “Domain is” and continue to the next step.
Step 32 – Adding the domain
Add the domain that will be used to send emails through Trustifi Email Relay.
NOTE: Add here all the domains you want to be connected through the Trustifi Email Relay. In case you are adding more than one domain, make sure you added and authenticated him. (See Step 4, Step 5 and Step 6)
Step 33 – Adding new condition
Add new condition by clicking “Add condition”.
Step 34 – Adding domain type
Hover over “The sender” and select “Is external/internal”.
Step 35 – Selecting domain type
Select “Is external/internal”.
Step 36 – Applying domain type
Select “Inside the organization” and apply by clicking “OK”.
Step 37 – the connector redirection
Hover over “Redirect the message to” and select “The following connector”.
Step 38 – Selecting redirection type
Select “The following connector”.
Step 39 – Selecting the connector
Select the connector as you named him at the previous step at “Connectors” tab.
Step 40 – Adding new action
Add a new action by clicking on “Add action”.
Step 41 – Modifying the message properties
Hover over “Modify the message properties” and select “Set a message header”.
Step 42 – Selecting the modification type
Select “Set a message header”.
Step 43 – the header name
Click on “Enter text” and enter “x-trustifi-creds” (Without double quotes) at the message header field.
Step 44 – Entering the header name
Enter “x-trustifi-creds” (Without double quotes) in the message header field. Continue by clicking “OK”.
Step 45 – Adding the header value
Click on “Enter text” and paste your secret key from the Trustifi Outbound Management (Plan Settings) at the header value field.
Step 46 – Entering the header value
Paste the secret key you have copied from the Trustifi Outbound Management (Plan Settings). Continue by clicking “OK”.
Step 47 – Creating an exception
Click on “add exception” and hover over “Sender is…”, then click on “IP address is in any of these ranges or exactly matches”
Step 48 – Adding the exception IPs
In the pop-up window, enter the following IPs - 3.93.243.176 and 3.93.139.220 (click on the “+” icon to add each one) and then click on “OK” to confirm.
Step 49 – Setting rule properties
Set the final rule properties as follows:
- Select the rule severity level to “High”
- Check the boxes for "Stop processing more rules" and "Defer the message if rule processing doesn't complete".
- Under “Match sender address in message”, select “Header or envelope” .
- Save the rule by clicking “Save”.
