CodeTwo Email Signatures
for Office 365

Centrally managed, server-sided email
signatures for Exchange Online

Reliability and security

CodeTwo Email Signatures for Office 365 uses cloud services for email processing and adding email signatures and disclaimers. The software requires your Office 365 email flow to be routed through CodeTwo Email Azure Service located in Azure™, but you can be sure your email remains safe.

Find out how our email processing infrastructure was designed to meet high security and reliability standards of business communication.

Powered by Microsoft Azure™

Although the program’s email processing engine is located in the cloud, your Office 365 email never leaves Microsoft datacenters. CodeTwo services are located on Azure servers which offer high security and SLA standards. 

OAuth 2.0 protocol

Before setting up any email signature rules, your Office 365 tenant needs to be registered in CodeTwo Email Azure Service. The service itself, however, uses Office 365 OAuth 2 authentication, which doesn’t require our application to collect and store any user credentials at any point. The access to Office 365 tenant settings is granted according to security tokens issued by Office 365 API and is entirely handled by Office 365 native mechanisms. 

TLS encryption and authentication

Every component involved in the email processing pipeline is authenticated with TLS. Every time a message leaves your Office 365 tenant in order to be processed by CodeTwo Email Azure Service, it is filtered by Exchange Online Protection (EOP) mechanisms and verified whether it was forwarded by an authorized server. The same procedure is triggered when processed emails are sent back from the CodeTwo service to the original tenant. Thanks to this flow you can be sure that messages travel only down a secure and verified pipeline and can’t be hijacked by hackers at any point.

No external endpoints

One of the key aspects of our cloud infrastructure is that it can be only accessed from a closed and protected internal network of Azure™ servers. We don’t open any public endpoints to any external services. We also don’t use any web services, or public API calls. Every communication happens ‘behind closed doors’ and can’t be accessed from the outside. This is ensured by CodeTwo programmatic solutions, as well as native Azure and Office 365 features, e.g. the previously mentioned EOP.

Private storage

CodeTwo Email Signatures for Office 365 stores all email rules settings in the Azure™ cloud. This storage, however, is private and completely unreachable for any external users, or software. Owing to this you can be sure your settings are safe and only you can create, change or delete them.

Efficient load balancing

Load tests and performance enhancements were one of the key parts of the beta program before the product was launched. Thanks to the data we gathered from hundreds of beta testers, our current infrastructure is now designed for maximum performance and reliability. The implemented load balancing mechanisms regulate the number of virtual machines responsible for processing emails in every geolocation and can scale in real time depending on the current email traffic in a given location. 

Unnoticeable delay

We wanted to make sure that our services never add more than a few seconds of delay to the email processing time and we reached our goal. The average overhead we observed in our extensive tests reached around 6 seconds when compared to Office 365 clean setup (with no relay set up). This means your users will hardly be able to see any delays in email delivery time after you set up the connectors, and the operation of the application won’t have any impact on their work efficiency.

Partners, certificates & awards