Question 1

What is Conbool?

Accepted Answer

Conbool is a secure mail gateway platform for Microsoft 365, Exchange Online, and classic SMTP environments. It combines email security, encryption, and compliant signatures and disclaimers in one central system. The platform is multi tenant and designed for both organizations and IT service providers and partners.

Question 2

Who is Conbool for?

Accepted Answer

For SMBs and mid market organizations, teams with strict compliance requirements, and IT service providers and managed service providers who want to roll out email security and compliance in a standardized way.

Question 3

Does Conbool work with Microsoft 365 and Exchange Online?

Accepted Answer

Yes. Conbool is built for Exchange Online and integrates into common mail flows. It covers inbound and outbound email without requiring users to change how they work.

Question 4

Does Conbool work without Microsoft 365?

Accepted Answer

Yes. Conbool can also be deployed in SMTP setups and hybrid environments.

Question 5

Do we need to install anything on user devices?

Accepted Answer

In most cases, no. Conbool operates gateway and flow based. Some specialized features may require exceptions, but the goal is minimal client changes.

Question 6

How fast can we deploy Conbool?

Accepted Answer

Typically in a few days rather than weeks. The exact effort depends on your mail flow, domains, tenant structure, and the policies you want to enforce.

Question 7

Can we test Conbool first?

Accepted Answer

Yes. A trial or pilot is common. You can start with one tenant, one domain, or a pilot group and then roll out gradually.

Question 8

How does multi tenant or partner operation work?

Accepted Answer

Conbool is designed for multi tenant operation. Partners can manage multiple customers separately and reuse standardized policies and templates.

Question 9

Where is Conbool hosted?

Accepted Answer

Depending on the offering, as a hosted service or in an environment you control. Mail flows, logging, and retention rules are defined and documented clearly.

Question 10

What data does Conbool process?

Accepted Answer

Conbool processes email metadata and, depending on enabled modules and policies, may also process message content and attachments. This is required for security and compliance functions such as scanning, DLP, signatures, or encryption logic. Scope, logging, and storage behavior depend on configuration and the operating model.

Question 11

Does Conbool store emails permanently?

Accepted Answer

By default, Conbool is optimized for processing, not archiving. Temporary storage may be required for scanning, queues, and retries. Long term storage is only used if explicitly configured and required for the specific use case.

Question 12

Can Conbool be used in a GDPR compliant way?

Accepted Answer

Conbool is designed to support GDPR compliant use. Whether a specific deployment is GDPR compliant depends on the scenario, for example the DPA, hosting, logs, retention, and DLP policies.

Question 13

Which compliance topics does Conbool cover?

Accepted Answer

Typical topics include protecting confidential information, secure delivery, consistent signatures and disclaimers, traceability through logs, and policy and role based control.

Question 14

Can Conbool replace existing email security?

Accepted Answer

Often yes, or Conbool can complement existing solutions. Many customers start with one module and consolidate over time.

Question 15

How is Conbool different from single purpose tools?

Accepted Answer

Conbool combines multiple core capabilities in one platform. This reduces breaks in the mail flow, shortens deployment time, and simplifies operations, roles, templates, and policies.

Question 16

Are roles and permissions available?

Accepted Answer

Yes. Typical roles include Administrator, Security Administrator, Compliance and Legal, Helpdesk and Operator, and Read only access.

Question 17

Are audit logs available?

Accepted Answer

Yes. Changes to policies and configurations are logged. Depending on the module, security relevant events are also recorded.

Question 18

How do onboarding and support work?

Accepted Answer

Onboarding typically includes mail flow validation, DNS and connector setup, a policy workshop, a pilot phase, and rollout. Support can be offered in tiers depending on your needs and operating model.

Question 19

What is SecureMail?

Accepted Answer

SecureMail enables secure email communication. It supports S/MIME and PGP, policy driven automatic encryption, and secure portal or fallback delivery when recipients cannot use encryption.

Question 20

When do I need SecureMail?

Accepted Answer

When you send sensitive data by email or when external communication must be secure, traceable, and compliant.

Question 21

Does SecureMail support S/MIME?

Accepted Answer

Yes. SecureMail can support S/MIME workflows including signing, encryption, certificate logic, and policy based control. The exact scope depends on your client and tenant environment.

Question 22

Does SecureMail support PGP?

Accepted Answer

Yes, depending on the configuration and setup. The core concept is a policy that decides the secure delivery method, including fallback options.

Question 23

What happens if the recipient does not have S/MIME or PGP?

Accepted Answer

A secure alternative is used, such as portal delivery or an encrypted retrieval method. The goal is strong security without extra effort for the sender.

Question 24

Can rules decide when encryption is applied?

Accepted Answer

Yes. Examples include specific recipient domains, keywords, labels, file types, DLP matches, or recipient profiles.

Question 25

Can internal and external recipients be handled differently?

Accepted Answer

Yes. A common setup is normal internal mail flow and policy driven encryption or portal fallback for external recipients.

Question 26

Can we add subject prefixes and user notices?

Accepted Answer

Yes. You can centrally define subject prefixes, notices, multilingual text, and branding.

Question 27

How are certificates and keys managed?

Accepted Answer

Depending on the setup, management is centralized and policy driven so mapping, renewal, and lifecycle can be controlled.

Question 28

Can we confirm whether an email was delivered securely?

Accepted Answer

Yes. Reporting and logs show which delivery method was used and which rule triggered it.

Question 29

Does SecureMail affect deliverability?

Accepted Answer

Security must work hand in hand with deliverability, for example TLS, DKIM, DMARC, headers, and size limits. SecureMail is designed to handle these factors in a controlled way.

Question 30

Can SecureMail provide extra protection for attachments?

Accepted Answer

Yes, for example through secure retrieval mechanisms in portal fallback, or via policies in combination with MailGuard.

Question 31

What is MailGuard?

Accepted Answer

MailGuard protects inbound and outbound email against phishing, malware, spam, malicious links and attachments, and data leakage. Administration and enforcement are centralized and policy driven.

Question 32

What does MailGuard protect against?

Accepted Answer

Typical scenarios include phishing and fraud attempts, malware in attachments, malicious or suspicious URLs, spam and graymail, and data leakage through DLP policies such as PII, IBAN, contract data, or keywords.

Question 33

Does MailGuard work for inbound and outbound email?

Accepted Answer

Yes. Inbound it protects users. Outbound it helps prevent data leakage, misdelivery, and reputational risk.

Question 34

Can policies be separated by department or domain?

Accepted Answer

Yes. Policies can be structured by tenant, domain, group, role, or other criteria.

Question 35

Can we block, quarantine, or just tag emails?

Accepted Answer

Yes. Common actions include blocking, quarantining, delivering with warnings, adding subject prefixes, header tagging, URL rewriting, or removing attachments depending on the policy.

Question 36

Can we rewrite links?

Accepted Answer

Yes, if enabled. Links can be routed through a safe redirect, for example with scanning, tracking parameter removal, and exceptions. Alternatively, suspicious links can be defanged.

Question 37

What does defang mean?

Accepted Answer

Defanging makes a link non clickable without removing context, for example by using hxxp instead of http. This reduces accidental clicks.

Question 38

Can MailGuard remove tracking parameters?

Accepted Answer

Yes. This can improve privacy and reduce tracking.

Question 39

How does MailGuard handle attachments?

Accepted Answer

Attachments can be scanned, blocked, quarantined, or controlled via policies, for example by file type, size, or risk indicators.

Question 40

Can we apply different rules for internal and external email?

Accepted Answer

Yes. For example, less restrictive internally and stricter externally, or the other way around depending on risk and requirements.

Question 41

Can we manage false positives?

Accepted Answer

Yes. Through allow and block lists, exceptions, thresholds, and rule tuning.

Question 42

Can signals like first time sender or look alike domains be used?

Accepted Answer

Depending on the feature set and setup, such signals can be used in rules and detection logic. The goal is to reduce impersonation risk early.

Question 43

Is reporting available for security teams?

Accepted Answer

Yes. You get visibility into detections, actions, and trends such as top triggers, frequent patterns, and suspicious domains.

Question 44

What is Disclaimer?

Accepted Answer

Disclaimer provides consistent email signatures, legal footers, and branding. Everything is centrally managed, multilingual, and rule based, without requiring users to manually maintain signatures.

Question 45

Why not just use Outlook signatures?

Accepted Answer

Outlook signatures are often inconsistent, hard to enforce centrally, and prone to errors, especially with device changes, mobile clients, and mixed client landscapes. Disclaimer solves this centrally and consistently.

Question 46

Can we use different signatures for departments or locations?

Accepted Answer

Yes. Through rules, for example by domain, group, user attribute, recipient, or language.

Question 47

Does Disclaimer support multiple languages?

Accepted Answer

Yes. Languages can be selected per recipient, per rule, or defined as a default per tenant.

Question 48

Can we use placeholders?

Accepted Answer

Yes. Signatures can be populated dynamically from user and company data, for example name, job title, phone number, or logo.

Question 49

Can we differentiate between internal and external signatures?

Accepted Answer

Yes. For example, a short footer internally and full legal details plus branding externally.

Question 50

Can we show campaign banners temporarily?

Accepted Answer

Yes. This can be scheduled or targeted, for example only externally or only for specific domains.

Question 51

Are existing user signatures overwritten?

Accepted Answer

In most cases the content is added server side or standardized. You can define whether user text remains and where Disclaimer is placed.

Question 52

What happens on replies and forwards?

Accepted Answer

Disclaimer can distinguish between the first message and follow ups so threads do not grow unnecessarily.

Question 53

Can we define exceptions?

Accepted Answer

Yes. Exceptions can be set for specific recipients, senders, subject content, or keywords in the body.

Question 54

Can we use different layouts per brand or company?

Accepted Answer

Yes. Multi tenant capability enables different corporate design elements, logos, layouts, links, and legal text per tenant.

Question 55

Is Disclaimer compatible with encryption like S/MIME?

Accepted Answer

This is aligned with your security model. Whether signatures and disclaimers are applied before or after encryption depends on your integrity and compliance requirements. Conbool is designed to control the sequence reliably.

Question 56

How is Conbool integrated into the mail flow?

Accepted Answer

Typically via connectors, smarthost, or TLS routing for inbound and outbound email. The goal is a clear, auditable mail flow.

Question 57

Do we need DNS changes?

Accepted Answer

Usually yes. Depending on the setup this includes MX for inbound mail, SPF, DKIM, and DMARC for deliverability and authentication, plus additional records for validation.

Question 58

Does Conbool support TLS and domain validation?

Accepted Answer

Yes. Secure transport and clear validation are standard requirements.

Question 59

Can Conbool support DKIM and DMARC?

Accepted Answer

Conbool is designed to work cleanly with DKIM, DMARC, and SPF. The concrete implementation depends on your sending and signature setup.

Question 60

What does a rollout typically look like?

Accepted Answer

A typical process includes discovery and current state analysis, a pilot, policy tuning, staged rollout, and then ongoing operations with monitoring and reporting.

Question 61

Is there a quarantine?

Accepted Answer

Depending on configuration, yes, for example for spam, malware, or policy violations. Alternatively, messages can be tagged or blocked without quarantine.

Question 62

Which identities does Conbool use?

Accepted Answer

Typically via tenant configuration and roles. User identities and attributes can come from directories such as Entra ID, depending on the setup.

Question 63

Can we pull users and attributes from the directory?

Accepted Answer

Yes. Importing from Entra ID is common so signatures, group based rules, and policies stay dynamic.

Question 64

How is monitoring implemented?

Accepted Answer

Through health and event views, logs, alerts depending on the operating model, and analytics on detection rates and policy effectiveness.

FAQ

Frequently asked questions about the platform

FAQ â€“ General

FAQ â€“ Conbool SecureMail

FAQ â€“ Conbool MailGuard

FAQ â€“ Conbool Disclaimer

FAQ â€“ Setup, technology, and operations

FAQ â€“ Security and trust

FAQ â€“ Pricing, licensing, and packages

FAQ â€“ Typical use cases

Noch Fragen offen?

FAQ