When you migrate email to Secure Email Gateway (SEG), users can access emails only through the SEG proxy. SEG enforces email access control policies, providing access only to approved users and devices, and the attachment encryption policies ensure data security.

To migrate email to the SEG environment:

  1. Configure SEG at your required organization group under Global in the AirWatch Console. For information on how to configure SEG for the Classic or the V2 platform, see Configure the Classic Platform or Configure the V2 Platform.
  2. Download and install SEG. For information on how to install SEG for the Classic or the V2 platform, see Install the SEG (Classic Platform) or Install the SEG (V2 Platform).
  3. Test the SEG functionality using the email compliance policy.
  4. Disable all compliance policies temporarily.
  5. Ask all users to enroll their devices into AirWatch.
  6. Provision a new email profile (with the SEG server URL as the hostname) to all the enrolled devices.
  7. Periodically, remind users with unmanaged devices to enroll into AirWatch.
  8. Modify firewall (or Threat Management Gateway) rules to block EAS access to the mail server, on a specific date. This ensures mobile devices are blocked from accessing the mail server directly.

    Existing Webmail, Outlook Web Access (OWA), and other email clients continue to access the mail server.

  1. Enable email policies on the SEG server to begin enforcing access control and data security on devices attempting to access corporate email.