It is not required to set up 2FA on your account, but it is recommended if you'd like the peace of mind that comes with the additional security.
Registering your second factor
You can connect your second factor with Tutanota in "Settings" -> "Login". As admin you can setup second factors for your users in "Settings" -> "User management".
Tutanota currently supports the following second factor types:
Second factors can be added by administrators and "normal" users, but removed only by admins.
Note: If you lose your second factor, you will no longer be able to login to your account. To prevent this, you can add multiple second factors and additionally note down the recovery code shown to you when adding a second factor.
Authenticating with your second factor
During login you have to authenticate with one of your second factors. Instead, you may also accept that session from another logged in client. If your browser does not support the second factor you had registered, you can only accept the session from another client.
How to reset your second factor if you lose it
You can reset the second factors if you have noted down your personal recovery code. You can view and also update your recovery code in "Settings" -> "Login".
If you have lost your second factor, click on "More" -> "Lost account access" on the login page. There you will have to enter your recovery code as well as your password to delete all your second factors.
When you setup a new account, please make sure that:
When it is already too late and you can't login to Tutanota, please make sure that:
We do not know your password and can't modify your second factors. However, there are different ways on how to regain access to your mailbox in case of a lost password or second factor.
Administrator is available
If you are a member of an organization or a business: Ask your administrator to reset your password. Each administrator can reset the passwords of other users and admins. If you want to be make sure to never lose your Premium account, it's best to have at least two administrators.
Recovery code is available
Did you write down your recovery code? If so, you can reset your password or second factor using your personal recovery code by clicking on More > Lost account access on the login page.
You can view and also update your recovery code in Settings > Login. You can also find more information on this innovative reset feature on our blog.
I can proof that I am the owner of the account
Are you able to proof that you are the owner of the mailbox? We can move your original mail address as an alias to a new account. You will be billed 30 € for the mail address transfer to a new account, as this involves manual effort from our support staff. You also need to create a new Premium or Pro account.
Contact us and include the following details to prove that it is your account:
Depending on the width of your browser Tutanota displays your folder list, your mail list, and the selected mail.
When you select a mail, these options show up to its top.
The top mail menu has the following options:
If you want to print a mail as pdf, you can use the browser function for printing.
Sending of mails
Condensed mail window.
Enlarged mail window.
'Login' shows you several info items about your Tutanota account.
Here you can configure how you want to send your mails.
'Inbox rules' (filter): Click on 'Show Inbox Rules' and then on the plus-button. A pop-up with three options opens: 'Field', 'Value' and 'Target folder'.
Click on the pen symbol to activate whitelabel (€2 per user/per month). When you order the whitelabel feature, you can activate the Tutanota login at your own domain (a subdomain), change the look of Tutanota according to your needs (e.g. Corporate Identity) and create secure contact forms for your clients.
'Whitelabel domain': Click the pen symbol to activate the whitelabel feature for your own domain. A pop-up shows up where you have to enter the following information (shown in the screenshot):
When you order the whitelabel upgrade for your Premium account you can activate the Tutanota login on your own domain (a sub-domain), change the look of Tutanota according to your needs (e.g. corporate identity) and create contact forms for your clients. If you send confidential messages to external recipients, those recipients are also directed to your whitelabel domain.
Complete list of possible customizations:
Preconditions for applying the whitelabel feature:
This is how you can setup your whitelabel domain:
Enable the Tutanota login at your domain by uploading your domain's SSL certificate chain and private key here in your Tutanota Settings - Whitelabel. Both must be provided in PEM format (base64 coded). The private key file content must start with the line "-----BEGIN RSA PRIVATE KEY-----" or "-----BEGIN PRIVATE KEY-----". The certificate file content must start with the line "-----BEGIN CERTIFICATE-----". In order to create a certificate chain from individual certificates create a file in a text editor. Then first copy your domain's certificate into that file and below that certificate any intermediate certificate or certificate bundle that was provided to you in addition to you certificate file. Your certificate chain file might then look like this:
(Your SSL certificate, e.g. from your_domain_name.crt)
(Your intermediate SSL certificate, e.g. from intermediate.crt)
Optionally upload your custom logo to be shown when you load Tutanota at your own domain.
Now you should be able to open your custom domain in your browser and see the Tutanota login with your own logo and own colors. Additionally you may now order and setup contact forms ("Settings" -> "Contact forms") which allows you to be contacted confidentially.
Please note that your whitelabel customizations will not be visible in the mobile apps.
Contact forms allow you to be contacted confidentially as all messages are automatically end-to-end encrypted.
Create a new contact form
Manage existing contact forms
Once upgraded you can add 'Extensions':