We are planning to use Openfire and Spark across our organization. Since some users will be connecting from the Internet (i.e. outside our corporate network and with no VPN), is there a way of enforcing OTR?
It seems that by default OTR is off and users might just forget to click on the padlock icon.
We’re open to other suggestions on how to enforce that all communications are encrypted. Our Openfire has already been configure to “require” encrypted connections but if I’m not mistaken that is only for client to server communications (not client to client).
It would be acceptable if only the part of the communication that happens over the Internet is encrypted (e.g.: one user from within the corporate network chatting with another user connected over the Internet – only the user connected from the Internet will require encryption).
Thank you so much.
With Best Wishes,