MailEncryptSavedPreference – controls encryption of saved emails

🛠️

Parameter: MailEncryptSavedPreference

Short description: Controls the encryption of stored emails (Sent, Drafts) in the Notes Client.

Profile

Parameter	`MailEncryptSavedPreference`
Category	Mail / Router
Component	Client
Available since	8.5
Supported versions	9.0.1, 10.0, 11.0, 12.0, 14.0, 14.5, 14.5.1
GUI equivalent	Person document / Policy
Possible values	`0` = do not encrypt (default), `1` = encrypt the saved copy

Description

MailEncryptSavedPreference=1 instructs the Notes Client to encrypt the saved copy of a sent mail (in the Sent folder) and drafts (Drafts) with the user's own public key. As a result, they are stored in the mail NSF in a form readable only to the user – administrators with mere file / replica access cannot see plain text. Use cases are compliance- or trust-sensitive setups in which the mailbox should be shielded from server admin inspection.

Example configuration


MailEncryptSavedPreference=1

Notes & pitfalls

Heavily encrypted mailboxes hinder server-side full-text indexing and content filtering.

Loss of the private Notes key = irreversible loss of access to the encrypted content; a backup strategy for ID files is mandatory.

A value set via mail policy overrides a local entry.

Pairs with MailEncryptOutgoing and the encryption configuration in the Person document.