Re: secure email setup (digital signatures)

From: djc (noone_at_nowhere.com)
Date: 02/24/05 

Date: Thu, 24 Feb 2005 12:10:39 -0500

thank you for the info neo. I have not decided on external or interal cert
authority yet. I guess external would be the best way so all users already
trust the source.

thanks again.

"neo [mvp outlook]" <neo@online.mvps.org> wrote in message
news:%233QCwGnGFHA.2156@TK2MSFTNGP09.phx.gbl...
> Will your site be acquiring certificates from an online authority like
> Verisign/Thawte or going with an internal certificate authority? The
later
> introduces issues of its own since the public will not know about your
> internal certificate authority. In any event, once the user acquires a
> certificate for S/MIME, they just need to publish the certificate in their
> personal certificate store. From there, they select Tools | Options |
> Security tab I believe and set the drop down to their S/MIME certificate
and
> pick the options correct for your site.
>
> /neo
>
> ps - if getting a certificate from an online authority, encourage your
users
> to keep a backup copy of the *.cer file. This way if they change machines
> or their NT/2000/XP/2003 user profile on the machine become corrupt, they
> can reinstall the certificate and not lose access to any encrypted
messages.
>
> "djc" <noone@nowhere.com> wrote in message
> news:eEvwn3mGFHA.2936@TK2MSFTNGP15.phx.gbl...
> > Can someone point me in the right direction for instructions on setting
up
> > secure email in Outlook 2000? I need to setup certificates so that email
> > can
> > be digitally signed by some of my users and so that these users can
verify
> > authenticity of the senders of some of their emails.
> >
> > any input would be greatly appreciated. thanks.
> >
> >
>
>

Relevant Pages

  • Re: X.509 and ssh
    ... by the 60s you were starting to see business countermeasure to this scenario in the offline market, where business checks had a maximum value limit printed on the check. ... The consumer would do a transaction with the merchant ... ... and the merchant would forward the transaction to the responsible (certifying authority) institution for authentication and authorization. ... instead of actually issuing a certificate ... ...
    (comp.security.ssh)
  • Re: Digitally sign my own DLL?
    ... This is the reason why we use our own CA certificate. ... - it may be strange that MS let you install silently a new CA into to the list of trusted CA but this is logical: if you trust someone enough to execute its code, you can trust its CA (Certification Authority). ... This is easy, but because the cert was produced by an untrusted root authority, any app signed by it will have the signature ignored by anyone you give your app to. ...
    (microsoft.public.vc.mfc)
  • Re: Forms Authentication via SSL question
    ... Have you tried installing your Certificate Authority as a trusted CA in the ... "Trusted Root Ceritifcation Authorities" for your local machine (ie. both ... > Server Error in '/IRWebAdmin' Application. ...
    (microsoft.public.dotnet.framework.aspnet)
  • Re: Forms Authentication via SSL question
    ... Have you tried installing your Certificate Authority as a trusted CA in the ... "Trusted Root Ceritifcation Authorities" for your local machine (ie. both ... > Server Error in '/IRWebAdmin' Application. ...
    (microsoft.public.dotnet.framework.aspnet.security)