How to enable end-to-end encryption for one-to-one calls in Microsoft Teams

Encryption involves hiding data by the use of passwords or keys. Without this key, the data is useless to whoever has it, hence it is an advanced security method of securing data. The data are written or encrypted in such an only machine-readable language, and can not be interpreted or decrypted except you have the key that is used in encrypting it.

In communication, end-to-end encryption is important in ensuring the validation of transmitted data, ensuring your data is not intercepted and remains private. Privacy has been a concern in today’s internet space, with various data breaches, people are daily exposed to the attack of cyber criminals, but encrypting your data ensures no one has access to it, not even the administrators operating the solution you are using for communication.

Luckily, Microsoft Team’s made it possible to encrypt your end-to-end calls, preventing unwarranted data breaches and further enhancing your privacy, this post shows you how to enable end-to-end communication in Microsoft Teams.

Microsoft team end-to-end encryption
To enhance your privacy when using the Microsoft team end-to-end call feature, Microsoft has employed the use of a 20-digit-code from the  SHA-256-Thumbprints of the callers and receivers endpoint certificates, these certificates are validated when the caller and receiver read it to each other from their end, to see if it match, if these codes don't match, this mean there had been an interception, and the call can be manually terminated. 

Enabling Microsoft Team end-to-end encryption

Note: Before this setting can be enabled, your administrator must have enabled an enhanced end-to-end encryption policy for the organisation, to confirm that this has been enabled, you will see an option to turn on end-to-end encryption from settings.

On your Desktop,

-On the top-right corner of your Team windows, select your profile picture, or the ellipse (three vertical dots) next to it.

-Go to Settings>privacy

-Locate the end-to-end encryption call button and toggle on the button.

Once this is done, the message below will be displayed, confirming you have successfully turn on the end-to-end encryption for your Team’s account.

On your mobile phone,

-Go to settings>calling, from your Team mobile app

-Locate Encryption and turn on the end-to-end encrypted call.

To confirm that your call is now encrypted, during a call on desktop or mobile phone, the encryption icon (a shield with a lock) will be displayed on the top left corner, hovering over the security shield will display the information that the call is encrypted, a security code is also displayed, to confirm that the call is not intercepted, you can ask the other party to verify that the same code is displayed on the other end.

If encryption hasn’t been enabled on your device, a shield icon is also shown, but this is the standard Microsoft Team’s encryption icon, which indicates that every call are encrypted.

Additional Information

-Turning off encryption on a device will affect your Team account across all device.

-Even if encryption is not enabled on your device, your end-to-end calls on Team is equally encrypted by the default industry standard.

-End to end encryption isn’t available for PSTN calls.

-Chats and group calls are encrypted by Microsoft 365 encryption.

Thanks for reading, if you need any other information, please comment below.

Leave a Reply

Inline Feedbacks
View all comments