Content to Notify End Users When Starting to Use HENNGE One

Target

• Customers starting to use HENNGE One services

Purpose

• When starting to use HENNGE One services, determine the necessary information according to the features that end users will use.

Notes

1. Consider what information to provide to end users depending on the service and usage purpose.
2. The URL for each HENNGE One service varies depending on your environment.
3. The content of this article is based on the product as of March 2026 and may be changed without notice in the future.

Table of Contents

Access Control

1. Access Control User Portal screen URL
2. Login URL via groupware
3. Username / Password
4. How to change Access Control password
5. How to configure OTP (One-Time Password) reception

Secure Browser

1. How to install and register the app
2. How to configure unread notifications

Device Certificate

1. Device Certificate installation and login screen

Email DLP

1. Organization operation rules
2. Email DLP user screen URL
3. Email DLP user help

Email Archive

Secure Transfer

1. Secure Transfer screen URL
2. Secure Transfer user help

File DLP

1. Force stop file sharing

Cloud Protection

1. Notification email to users

Tadrill

1. Tadrill Alert (Report Add-on) usage notification (for HENNGE One Pro customers only)

Access Control

Access Control User Portal screen URL

If you are using SSO with multiple services, using the User Portal makes it convenient to access various services.
In the User Portal, links to services integrated with Access Control and frequently used page URLs can be displayed as links by the admin.
[Access Control] About the User Portal

The following operations are available on the Access Control User Portal screen.
* Some items may not be displayed depending on the admin's settings.

• Change Password * Only if the end user's password is not synchronized from Active Directory
• OTP (One-Time Password) settings (Receive via app / Receive via email)
• Register Secure Browser
• View or revoke Device Certificates
• Log out from Access Control

The URL to log in to the portal differs depending on the login screen you use.

• New design URL: https://ap.ssso.hdems.com/
• Old design URL: https://ap.ssso.hdems.com/portal/sampledomain.com/
  * Replace sampledomain.com in the URL with your main domain.

Login URL via groupware

If you do not use the Access Control User Portal screen, please notify end users in advance of the URL to access groupware (such as Microsoft 365, Google Workspace, etc.).
After introducing Access Control, when users enter their username on the groupware login screen, they will be redirected to the Access Control screen and will need their Access Control user information.
For examples of screen transitions, please refer to the following articles.

• [Access Control] How to log in to Microsoft 365 via Access Control
• [Access Control] How to log in to Google Workspace via Access Control

By using the following URLs, you can also display the Access Control login screen directly without going through the groupware login screen.
Each URL contains your environment's main domain.
Replace sampledomain.com in the URL with your main domain.

• Microsoft 365

  https://portal.office.com/?domain_hint=sampledomain.com

• Google Workspace

  https://mail.google.com/a/sampledomain.com/

• Other Web Services
  For login URLs when using single sign-on (SSO) with other web services (such as Salesforce) and Access Control, please check the URL for each web service.

Username / Password

Please notify users in advance of the username and password required to log in to Access Control.
If the password is synchronized from Active Directory and users already know their password, notification is not necessary.
If the user's password is registered directly in Access Control, you need to notify them in advance.

How to change Access Control password

If the user's password is not synchronized from Active Directory, each user needs to change their password in Access Control.
End users can access the password change screen by either of the following methods.

• Access from the Access Control User Portal screen
  This is the method to access the password change screen from the Access Control User Portal screen.
  Change your Access Control login password

• Access the password change screen URL directly
  This is the method to directly access the screen to change your Access Control password.
  The URL for the password change screen contains your environment's main domain.
  Replace sampledomain.com in the URL with your main domain.

  https://ap.ssso.hdems.com/portal/sampledomain.com/password/

How to configure OTP (One-Time Password) reception

As an access control rule, if you use OTP (One-Time Password) for two-factor authentication when accessing from outside the company, etc.,
end users need to configure in advance how to receive OTP (One-Time Password).
Specifically, you can choose to receive OTP by email each time you log in via Access Control, or receive it via an OTP generator app.

• Configure OTP (One-Time Password) reception via application
• Configure OTP (One-Time Password) reception via email

Secure Browser

How to install and register the app

Secure Browser must be installed and registered in advance on the end user's device.
For detailed setup instructions, please refer to the following setup pages.

• iOS version
• Android version

How to configure unread notifications

When you receive an email in your groupware (Microsoft 365 or Google Workspace) mail system, Secure Browser can send you a notification. (This feature is available only on the mobile version.)
For detailed setup instructions, please refer to the following setup page.

Secure Browser unread notification permission settings

Device Certificate

Device Certificate installation

Device Certificates must be installed in advance on the end user's device.
For detailed setup instructions, please refer to the following article.
Device Certificate installation procedure list

How to log in using Device Certificate

When logging in to Access Control using a Device Certificate, you need to explicitly select Device Certificate login on the login screen.
For examples of screen transitions, please refer to the following article.
[Access Control] Login operation using Device Certificate

Email DLP

Organization operation rules

You need to notify end users of your organization's policy for preventing email misdelivery with Email DLP.
Below are some examples of operation rules to notify end users.

• How to attach files (e.g., attach without zipping in advance)
• Retention period after sending (emails can be deleted within a certain period after sending)
• Prohibited conditions for external emails (e.g., cannot send if "Confidential" is included in the subject, message body, or attachment)
• How attached files are delivered (Send with Secure Download, send as encrypted ZIP to specific recipients, etc.)
  For detailed procedures, please refer to the following article.
  [Email DLP] How to download files sent with Secure Download

Email DLP user screen URL

If you temporarily hold outgoing emails to external recipients with Email DLP, you need to notify end users in advance of the URL for the screen to cancel the sending of held emails, and have them log in at least once before applying filters.
* If an end user's sent email is filtered while they are not signed in, they will not be able to view the related history from the user screen.

The URL for the screen to cancel the sending of held emails contains your environment's main domain.
Replace sampledomain.com in the URL with your main domain.

https://console.mo.hdems.com/#/sampledomain.com

Email DLP user help

You need to notify end users how to operate each item on the Email DLP user screen.
* The actual items used may vary depending on your operation rules.
For detailed procedures, please refer to the following article.
[Email DLP] User Help

Email Archive

There are no items that need to be notified to end users.

Secure Transfer

Secure Transfer user screen URL

You need to notify end users in advance of the URL to access the Secure Transfer screen.

https://transfer.hennge.com/

Secure Transfer user help

You need to notify end users how to operate each item on the Secure Transfer user screen.
* The actual items used may vary depending on your operation rules.
For detailed procedures, please refer to the following article.
[Secure Transfer] User Help

File DLP

Force stop file sharing

Notify users that sharing may be stopped if a security risk is detected by the external sharing policy. (Optional)

Cloud Protection

Notification email to users

Depending on the security policy settings, users will receive a notification when a security risk is detected.
Notify users of the actions they should take upon receiving a notification. (Optional)

Tadrill

Tadrill Alert (Report Add-on) usage notification (for HENNGE One Pro customers only)

Inform end users that Tadrill Alert (Report Add-on) will be distributed and notify them how to use it.

• [Tadrill] How to use Tadrill Alert to report suspicious emails (Microsoft 365 Outlook web version)
• [Tadrill] How to use Tadrill Alert to report suspicious emails (Microsoft 365 Outlook mobile version)
• [Tadrill] How to use Tadrill Alert to report suspicious emails (Google Workspace Gmail web version)
• [Tadrill] How to use Tadrill Alert to report suspicious emails (Google Workspace Gmail mobile version)