Share SMTP Credentials Securely

The problem

SMTP credentials shared via chat or email give full access to send messages on behalf of your domain. Compromised email server credentials enable phishing campaigns that appear to come from your organization, damage sender reputation, and can lead to domain blacklisting. These credentials often include relay host, port, username, and password in a single string.

How Vaulted helps

Vaulted encrypts your SMTP credentials in the browser with AES-256-GCM and generates a self-destructing link. The encryption key lives only in the URL fragment and never touches any server. Once the recipient views the credentials, the link expires, leaving no trace in message histories.

How to do it

1. Paste your SMTP host, port, username, and password into Vaulted
2. Set a view limit and expiration that fits your onboarding timeline
3. Share the encrypted link with the developer configuring email sending
4. They set up their mail client or application, and the link self-destructs