Introduction

Use the Zivver Outlook Web Access Add-in to securely send and receive messages directly from Outlook Web Access (OWA). This manual describes how to install the add-in v4 in Exchange Online (part of Microsoft Office 365). The Zivver OWA add-in is currently available for Exchange Online.

Warning

We recommend installing v4 only if your user’s UserPrincipalNames are different from the email addresses. In all other cases, use the OWA v5 installation guide.

Technical requirements

You can install the Zivver OWA add-in in Exchange Online. To use the OWA add-in, you must meet these requirements:

• Exchange Online
• The users’ workstations (Windows or Mac) have the latest General Available (GA) or Stable version of one of these browsers:
  • Microsoft Edge
  • Google Chrome
  • Mozilla Firefox
  • Apple Safari
• Third-party cookies are set to allowed in the browser settings.
  The OWA add-in uses cookies to store settings (called localStorage).

To install the Zivver OWA add-in in Exchange Online, you must meet these requirements:

• An Azure/Exchange admin account with:
  • Global Admin role

Installation

You can install the Zivver OWA add-in with either Microsoft 365 admin center or PowerShell. This document explains both methods.

Deploy and configure the Zivver OWA add-in via Microsoft 365 admin center

1. Log in to the Microsoft 365 admin center.
2. Click add Deploy Add-In.
3. Click Next.
4. Select Upload custom apps under Deploy a custom add-in.
5. Enter https://owa.zivver.com/v4/manifest.xml as the URL of the OWA Add-in manifest file.
   
   Info

   Make sure to include https://, even though this is already mentioned in the user interface.
6. Click Upload.
   A Configure add-in screen is shown.
7. Choose which users get assigned the ZIVVER OWA add-in:

• Everyone
  All users in your organization can use the add-in. Select “Everyone” to roll out the add-in to your entire organization. For example when going Live with Zivver.
• Specific users / groups
  Only make the add-in available for specific users or groups. Select this for a pilot of when only specific users use OWA.
• Just me
  Only makes the add-in available for your logged in admin account. Select this if you only want to test yourself.

1. Select how the add-in is deployed to users:

• Fixed (Default)
  Recommended. The add-in is enabled by default for assigned users, and they can’t disable the add-in.
• Available
  Not recommended. The add-in is disabled by default, but assigned users can install the add-in when they want.
• Optional
  Not recommended. The add-in is enabled by default for assigned users, but they can disable the add-in when they want.

1. Click Deploy.\
2. Read the Microsoft notice and click Next.
3. Click Close.
   The Zivver OWA add-in is now installed and configured for your Office 365 organization. It may take up to 24 hours for the change to be implemented in Exchange Online. Refer to Microsoft’s documentation for more information.
4. Continue with the required additional settings.

Deploy and configure the Zivver OWA add-in via PowerShell

You can install the Zivver OWA add-in via PowerShell with the script below. The script is based on the Microsoft article Centralized Deployment PowerShell cmdlets to manage add-ins.

1. Open PowerShell ISE.
2. Open the PowerShell script to deploy and configure a new add-in via PowerShell.
3. Paste the PowerShell script in the PowerShell ISE script pane.\
4. Save the script for reference material or for later use.
5. Run cmdlets from the script rule by rule.
   The Zivver OWA add-in is now installed and configured for your Office 365 organization. It can take up to 24 hours for the change to be implemented in Exchange Online. Refer to Microsoft’s documentation for more information.
6. Continue with the required additional settings.

Required additional settings

Create an Exchange rule for Zivver messages

Set this rule to prevent that OWA from sends a Zivver message as unencrypted, regular email.

Warning

If you do not set this rule when you use the Zivver OWA add-in, OWA sends Zivver messages unsecured. This might cause a data leak.

1. Log in to the Exchange admin center.
2. Click mail flow in the left side pane.
3. Select the Rules tab.
4. Click add add new rule.
5. Select Create a new rule …
   A pop-up prompts you to add a new rule.
6. Click More options… at the bottom of the window that appears.
7. Give the rule the name zivver-action: discard.
8. Under Apply this rule if… select the option A message header… matches these text patterns.
9. Click Enter text….
   A pop-up prompts you to enter a name of the header.
10. Give the header the name zivver-action.
11. Click Enter text patterns….
    A pop-up prompts you to add words or word groups.
12. Enter discard.
13. Click add add.
14. Click OK.
15. Select at Do the following… the option Block the message, and the sub-option delete the message without notifying anyone.
16. Check the option Audit this rule with severity level:.
17. Set the level to Low.
18. Set the mode for this rule to Enforce.
19. Check the option Stop processing more rules.
20. At Match sender address in message select the Header option.
21. Click Save.
    Now the priority can be set.
22. Raise the priority of the zivver-action:discard rule to 0 by clicking the the arrow up icon in the task bar.
    A mail flow rule has now been created that prevents Zivver messages from being sent as unencrypted, regular email.

Internet Explorer security zone

For Windows users only.

Add the following locations to the Trusted sites zone of Internet Explorer. This prevents a white screen during logging into the OWA add-in.

1. Open the control panel.
2. Click Network and Internet.
3. Click Internet Options.
4. Click the Security tab.
5. Click Trusted websites.
6. Click the Websites button.
7. Add these URLs as trusted websites:

• Zivver OWA add-in: https://owa.zivver.com
• Zivver web app: https://app.zivver.com
• OWA: https://outlook.office.com

1. Click Close.
2. Click OK.

MacOS Safari privacy settings

For MacOS users only.

1. At Settings > Privacy make sure “Prevent cross-site tracking” is unchecked.
2. At Settings > Privacy make sure “Block all cookies” is unchecked.
3. At Websites > Pop-up windows make sure “outlook.office.com” is allowed.

Verify the installation was successful

Tip

It can take up to 24 hours for the above changes to be implemented in Exchange Online. If you cannot verify that the installation is successful in 24 hours after installation, try again the next day.

1. Click New to create a new message.
2. Set up a message as usual with a recipient, subject and body.
3. Click on the three dots on the bottom of your screen.
4. Click the Zivver icon in the bottom of the message window.
   The Zivver side panel should open on the right side.
5. Log in to Zivver if you are not logged in yet.
6. Turn on Secure mail.
7. Click Recipient verification.
   A new screen listing all recipients opens.
8. Complete the recipient verification where necessary.
   Learn more about Recipient verification
9. Click Apply.
10. Click Send to send the message.
    A Zivver pop-up can show to check the email and attachments on sensitive information.
11. Verify in the recipients’ inbox that a Zivver message has been received and no unencrypted, regular email has been received.
    You have now verified the installation was successful.

Note

Also send an unencrypted, regular email to verify the regular email flow works as intended.

Remove the Zivver OWA Add-in from Microsoft 365 admin center

Do the steps below to uninstall the OWA add-in from the Exchange admin center.

1. Log in to the Microsoft 365 admin center.
2. Select Zivver.
   The Zivver Add-in screen appears in a right side pane.
3. Scroll down on the Zivver side pane and click Delete add-in at the bottom of the side pane.
4. Confirm by clicking Delete. The Zivver OWA add-in has now been removed.

Remove the Zivver Exchange rule

Do the steps below to remove the Zivver Exchange rule from the Exchange admin center.

1. Log in to the Exchange admin center.
2. Click mail flow in the left side pane.
3. Select the Rules tab.
4. Select the mail flow rule zivver-action:discard.
5. Delete the rule delete .