How does Outlook retrieve recipient certificates

How does Outlook retrieve recipient certificates
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Applications Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
How does Outlook retrieve recipient certificates Lutz 10-09-2007
Posted by Lutz on October 9, 2007, 12:40 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Hi,
we have in our network multiple Exchange organizations. Today we
synchronize the contact data between each to have a real Global
Address List. So far so good, we cannot change that infrastructure. We
tried to add user certificates to the usercertificate attribute on the
contact object, but Outlook could not access the user certificate for
encrypting emails. We tried in the lab with user objects and it was
working as expected.
So is there an way to "allow" Outlook to search also in contact
objects without an LDAP connector in the Outlook profile. We would
like to aviod any changes on the client side.
Any suggestions?
Lutz


Posted by Lutz on November 13, 2007, 10:23 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Just a little bit feedback from me.

It is working, two things which I had to consider:
- the certificate has to be DER encoded
- the certificate has to have email encryption purpose





> Hi,
> we have in our network multiple Exchange organizations. Today we
> synchronize the contact data between each to have a real Global
> Address List. So far so good, we cannot change that infrastructure. We
> tried to add user certificates to the usercertificate attribute on the
> contact object, but Outlook could not access the user certificate for
> encrypting emails. We tried in the lab with user objects and it was
> working as expected.
> So is there an way to "allow" Outlook to search also in contact
> objects without an LDAP connector in the Outlook profile. We would
> like to aviod any changes on the client side.
> Any suggestions?Lutz



Posted by Paul Adare on November 14, 2007, 2:38 am
If you were  Registered and logged in, you could reply and use other advanced thread options
On Wed, 14 Nov 2007 03:23:47 -0000, Lutz wrote:

> Just a little bit feedback from me.
>
> It is working, two things which I had to consider:
> - the certificate has to be DER encoded
> - the certificate has to have email encryption purpose

You're not by any chance attending a training class at Microsoft Canada
this week are you? :-)


--
Paul Adare
MVP - Virtual Machines
http://www.identit.ca
If a train station is where the train stops, what is a work station?

Similar ThreadsPosted
retrieve deleted history January 19, 2006, 8:58 am
exploit for outlook/outlook express surfaces.. June 25, 2005, 1:19 am
retrieve server side certificate using win32 API. July 21, 2006, 4:46 am
Where is the offline CA's certificate store ? How to retrieve the issued cert's? April 27, 2006, 3:49 pm
Outlook update? October 25, 2005, 3:21 am
Re: Outlook Express No-longer August 6, 2005, 5:36 pm
Re: Outlook Express No-longer August 6, 2005, 6:38 pm
Re: Outlook Express No-longer August 6, 2005, 8:59 pm
Problem with outlook encription May 27, 2005, 10:29 am
Outlook 2003 + Can't Publish to GAL July 4, 2006, 7:27 am

The site map in XML format XML site map

Contact Us | Privacy Policy