E2E Encryption

Prev Next

End-to-End Encryption (E2EE) is a secure communication method that ensures only message senders and recipients can read the content of messages and files. Rocket.Chat enhances security by supporting E2EE for private and direct conversations.

IMPORTANT: Consider the limitations of E2E Encryption before enabling it:

  • Encrypted messages will not appear in search results

  • Encrypted content cannot be audited

  • Bots may not be able to access encrypted messages unless explicitly supported

Found a bug? Please report it to Rocket.Chat.

To enable this feature, a workspace administrator must activate End-to-End Encryption in the workspace settings.

To access this setting, go to Administration → Workspace → Settings → End-to-end encryption.

These configuration options control the default behavior of E2E encryption across your Rocket.Chat workspace. Adjust them to match your organization’s privacy, usability, and compliance needs.

Field

Description

End-to-end encryption toggle

Enables the E2EE feature across the workspace. When turned on, users can create encrypted rooms and enable encryption in DMs, discussions, and private channels.

Unencrypted messages in encrypted rooms

Allows users to send plain text messages in encrypted rooms. These messages will not be encrypted.

Encrypt direct messages

Automatically enables E2E encryption for new direct message rooms by default.

Encrypt private rooms

Automatically enables E2E encryption for new private channels, private teams, and discussions by default.

Encrypt files

Encrypts uploaded files sent in encrypted rooms. This is affected by the file upload settings.

Mentions

Allows mentions (@username, @all, etc.) to work inside encrypted content. Mentioned users will be notified if notifications are enabled.

Restore defaults

Resets all E2E-related settings on this page back to their original default values. Use with caution.

Once you’ve configured the settings, refer to the End-to-End Encryption User Guide for instructions on using E2E encryption to secure your communications.

For a deeper technical understanding, such as key generation and encryption mechanisms, see the End-to-End Encryption Specifications document.