This article contains information on recalling Secure Messages, including steps to recall messages, viewing message details, and accessing audit logs for tracking recall actions.
Overview
Subject to configuration, the sender of a Secure Message can assign an expiry date to the message being sent. After this date, the recipient will no longer be able to access the message.
A Secure Message can be recalled or expired earlier than the configured expiry date, by either the sender of the message or a Mimecast Administrator with the required permissions.
Admin Recall is not available for customers using Secure Messaging - Lite.
Recalling a Secure Message
A role of Basic Administrator or above is required to recall a Secure Message.
You can recall a Secure Message, by using the following steps:
- Log in to the Mimecast Administration Console.
- Navigate to Email Delivery | Secure Messaging.
- Enter the details of the Secure Message you wish to recall into the search fields.
- Click on Search.
On the initial Secure Messaging search page, to display all Secure Messages sent in the last 48 hours, click on the Search button. A pre-defined time range or custom range may also be used.
- The search results will be displayed in the columns below:
| Field / Option | Description |
|---|---|
| From |
Displays the email address of the sender. |
| To |
Displays either the single recipient's email address or is annotated. For example, "user@domain.com and 2 other(s)" will show to indicate additional recipients. |
| Subject |
Displays the subject of the Secure Message. |
| Status |
Indicates either Sent or Recalled. |
| Expiry Date |
Displays the expiry date of the Secure Message, if configured by the sender. |
| Date/Time |
Displays the date and time at which the Secure Message was sent. |
- From your search results, select the tick box to the left of the message(s) to be recalled.
- Click on Recall to recall the selected message(s).
- A confirmation pop-up appears.
- Click on the Recall button to confirm.
- The process of recalling the message(s) begins and is confirmed by a dialog box, indicating that the results will be updated after a short time
- Click on Search to display the updated results
Viewing Additional Details
To view additional details about a Secure Message, click on the message to display the Message Details pop-out panel. This panel displays two tabs:
- Message tab:
- General Information shows the core message details related to the sender, recipient, subject, date/time, and if the message has been recalled.
- Recipient Permissions shows the permissions that were configured by the recipient when sending the Secure Message.
- Status tab:
- Shows each of the recipients and if they have read the Secure Message. This status shows as either Sent or Read.
Audit Logs
Recalling a Secure Message results in the creation of an Audit Log entry.
You can access the Audit Logs by using the following steps:
- Log in to the Mimecast Administration Console.
- Navigate to Account | Audit Logs.
- Filter by the audit log category of Secure Messaging Logs and athe udit log type of Secure Messaging - Admin Recalled.
Selecting the Audit Log entry will provide further details of the action.
Comments
Related to the STATUS TAB portion of the article, it is not trustworthy. It has been observed that the Status only changes from Sent to Read after a recipient has selected a message in their Inbox View. When a recipient logs onto their portal via the link in a Notification email, it opens the viewer into a tab specific for the message that was sent. This, of itself, does not register a change, and does not alter the Status. In fact, after reading the message in its own tab view, then select the Inbox View (which opens the Inbox tab), the message will display with bold font, which is an indication of Not Read.
Once the listed email is selected within the Inbox tab, it will update the status to Read. Therefore, the status cannot be trusted as a true indicator of whether a recipient has actually read the message or not.
An administrator can compare timestamps between when a message is sent, when a Recall type of action is taken, and when the recipient logs onto their portal account. This is the only way to know if someone may have read a message for sure.
The other option is to enable a definition in the Secure Message policy that includes Read Receipt.
Hi Roche,
Thank you for your comment.
We have reached out to the relevant product team to assist with addressing your concerns about “Read” status. Our engineers are looking at the issue, and in the meantime, please log a ticket with our support team here.
Thank you.
Please sign in to leave a comment.