Re: What is this error?

Thanks for the details... the user was able to open the email in OWA, does
that not support S/MIME and do some sort of down conversion?

"daveberm" wrote:

The sender can not encrypt the message for your user because your user
does not have a public/private key as of yet. Normally if you wanted
to have secure communication, both sender and recipient would have
their own public/private key pair. They would then exchange public
keys by sending a digitally signed (not encrypted) email. The
recipient would then add that users public key to their list of keys
and use it whenever they want to encrypt messages sent to that user.

As your user apparently does not have a digital cert for email, there
is no way the sender could encrypt the message with SMIME. Generally
you can tell if an email is signed or encrypted by the addition of a
few little icons in the message list. I think it is a lock for
encrypted email and something red for signed email.

Your best bet is to call the user or their admin and see what may be
going on.

Dan wrote:
So if I understand, the sender sent an encrypted message, my user is trying
to open it but needs a cert in order to do it. I know this user has not
corresponded with this client before and since it's an outside company it
seems like we would need to obtain the public key and install it... does
that seem logical?
Thanks,
Dan

"daveberm" wrote:

You probably want to have an understanding of SMIME and what is
required. Here is one site that explains
it...http://www.marknoble.com/tutorial/smime/smime.aspx

Then check out http://support.microsoft.com/kb/258527/ to determine
what is the cause of the existing problem.

David Bermingham, MCSE, MCSA:Messaging
Senior Systems Engineer
www.steeleye.com

I am not sure what the problem
Dan wrote:
Hello,
A user of mine is getting the following error on several messages from a
single sender:

Can't open this item. Your Digital ID name cannot be found by the
underlying security system.

Is this something on my end or does the sender need to give my user a cert
of some sort so that he can open this?

Any help on how this works is appreciated. The environment is E2K3 with
Outlook 2K3.

Thanks,
Dan




.

Relevant Pages

  • Re: What is this error?
    ... The sender can not encrypt the message for your user because your user ... does not have a public/private key as of yet. ... As your user apparently does not have a digital cert for email, ...
    (microsoft.public.exchange.admin)
  • Re: What is this error?
    ... Dan wrote: ... does not have a public/private key as of yet. ... and use it whenever they want to encrypt messages sent to that user. ... is no way the sender could encrypt the message with SMIME. ...
    (microsoft.public.exchange.admin)
  • Re: Encryption Provider with PUBLIC decryptor and PRIVATE encryptor?
    ... Are you persisting the private key or generating it on a session basis? ... If you create a new public/private key pair each program session, ... want to not encrypt, wouldn't you accomplish what you want RSA? ...
    (microsoft.public.dotnet.languages.csharp)
  • Re: Gnugpg
    ... Specifically either MD5 or SHA1 are usually used for fingerprinting and RSA or DSA are used for public/private key signing/encryption, with typically a 128 bit 3DES or AES cipher used to encrypt the message body, using a random key which is then encrypted using each recipient's public key. ... said that if all the personal computers in the world were set to crack one PGP encrypted message, it would taken ten times the age of the universe to crack it. ... The algorithms used in later versions of PGP and now GPG are much more secure, and I'd rather use just one system for my encryption and signing that works. ...
    (Ubuntu)
  • Re: How to - PKCS#7 in c#
    ... we don't want to use certificates. ... public/private key. ... All I want is to encrypt the string message using RSA+PKCS#7 and then ...
    (microsoft.public.dotnet.security)