The Microsoft Purview Message Encryption portal provides access to encrypted messages sent from your organization’s users to external recipients. The cloud.microsoft
domain was provisioned in early 2023 to provide a unified, trusted, and dedicated DNS domain space to host Microsoft’s first-party authenticated SaaS products and experiences. With this rollout, selected Microsoft products and scenarios will transition to a similar static.microsoft
domain, in parallel with the previous domains. As part of this transition, the design of the portal (fonts, colors, controls, and more) will be adjusted to align with Purview branding and domain change.
Microsoft Purview Message Encryption portal (https://MessageEncryption.purview.static.microsoft)
A full list of products and scenarios already being delivered on the static.microsoft
domain can be found at Unified cloud.microsoft domain for Microsoft 365 apps – Microsoft 365 Enterprise | Microsoft Learn.
[When this will happen:]
General Availability (Worldwide, GCC): We will begin rolling out mid-October 2024 and expect to complete by mid-December 2024.
[How this will affect your organization:]
Users that receive encrypted messages that have a link to open the mail in the encrypted message portal will be redirected to applications under static.microsoft
domains gradually and automatically. No specific user action is required. Links to the previous domains are backwards compatible and will continue to be supported. Users may notice that the new application domains are lacking the .com
extension, which is by design, because .microsoft
is Microsoft’s own top-level domain. This exclusivity allows for additional security and protection against spoofing.
This change is on by default.
[What you need to do to prepare:]
- Educate users to recognize and expect
static.microsoft
as a key domain for Microsoft cloud experiences. Users can learn more about the.microsoft
domain in What is cloud.microsoft? – Microsoft Support - If your organizational websites, tools, or other materials reference the old URL outlook.office365.com/Encryption, those links will be automatically redirected. It would be good practice to update those assets and any documentation with screenshots to avoid user confusion.
- Admins should ensure that connections to
*.static.microsoft
are not blocked from their clients and enterprise networks. This recommendation should require no action if you are following standard Microsoft network guidance on domains and service endpoints
Source: Microsoft
The upcoming transition of the Microsoft Purview Message Encryption portal to the “.microsoft” domain by the end of 2024 will have an impact on both admins and users.
For admins, it’s essential to ensure that connections to *.static.microsoft are not blocked from their clients and enterprise networks. This will help maintain seamless access to encrypted messages and prevent any disruptions. Admins can refer to Microsoft’s network guidance on domains and service endpoints to ensure a smooth transition.
As for users, they will gradually be redirected to applications under the new domain without needing to take any specific actions. It’s important to educate users about the new domain, static.microsoft, so they can recognize it as a key domain for Microsoft cloud experiences. Additionally, updating any references to the old URL outlook.office365.com/Encryption in organizational materials will help avoid confusion.
In terms of criticality, this transition is significant as it aligns with Microsoft’s efforts to enhance security and protection against spoofing by moving to their own top-level domain, .microsoft. While the change is designed to be seamless, it’s crucial for both admins and users to be aware of the upcoming updates and take necessary steps to prepare for the transition.
Remember, change is the only constant in the tech world, so let’s embrace this transition with open arms and a sprinkle of humor!