If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. |
|
|
Thread Tools | Display Modes |
#1
|
|||
|
|||
How to publish digital ID (certificate) to GAL ?
Here we want to use digital ID (certificate) to announce confidential email
to all the colleagues. If the user wants to read the confidential mail, he must first imports the digital certificate manually from the mail issuer. I find there is a function "Publish digitial ID to GAL", is that mean if the mail issuer publish the digital ID to GAL, then all the GAL users will get the digitial ID automatically and will be able to read the confidential mail without import digitial ID ? How to publish digital ID (certificate) to GAL ? I always get "No valid security setting to publish...." when click the "Publish digital ID" button. Anyone have idea ? |
#2
|
|||
|
|||
How to publish digital ID (certificate) to GAL ?
Before answering, I have one question. Is your site using an internal
certificate authority? "Enid" wrote in message news Here we want to use digital ID (certificate) to announce confidential to all the colleagues. If the user wants to read the confidential mail, he must first imports the digital certificate manually from the mail issuer. I find there is a function "Publish digitial ID to GAL", is that mean if the mail issuer publish the digital ID to GAL, then all the GAL users will get the digitial ID automatically and will be able to read the confidential without import digitial ID ? How to publish digital ID (certificate) to GAL ? I always get "No valid security setting to publish...." when click the "Publish digital ID" button. Anyone have idea ? |
#3
|
|||
|
|||
How to publish digital ID (certificate) to GAL ?
YES ! Here we use Microsoft CA Server to issue the digital certificate.
"neo [mvp outlook]" wrote: Before answering, I have one question. Is your site using an internal certificate authority? "Enid" wrote in message news Here we want to use digital ID (certificate) to announce confidential to all the colleagues. If the user wants to read the confidential mail, he must first imports the digital certificate manually from the mail issuer. I find there is a function "Publish digitial ID to GAL", is that mean if the mail issuer publish the digital ID to GAL, then all the GAL users will get the digitial ID automatically and will be able to read the confidential without import digitial ID ? How to publish digital ID (certificate) to GAL ? I always get "No valid security setting to publish...." when click the "Publish digital ID" button. Anyone have idea ? |
#4
|
|||
|
|||
How to publish digital ID (certificate) to GAL ?
YES ! Here we use microsoft CA server to issue the digital certificate.
"neo [mvp outlook]" wrote: Before answering, I have one question. Is your site using an internal certificate authority? "Enid" wrote in message news Here we want to use digital ID (certificate) to announce confidential to all the colleagues. If the user wants to read the confidential mail, he must first imports the digital certificate manually from the mail issuer. I find there is a function "Publish digitial ID to GAL", is that mean if the mail issuer publish the digital ID to GAL, then all the GAL users will get the digitial ID automatically and will be able to read the confidential without import digitial ID ? How to publish digital ID (certificate) to GAL ? I always get "No valid security setting to publish...." when click the "Publish digital ID" button. Anyone have idea ? |
#5
|
|||
|
|||
How to publish digital ID (certificate) to GAL ?
Okay, your question is a bit more complex that just what is the "publish
digital id to gal" for. In an environment that has established an Enterprise CA and is storing certificates in Active Directory at the time they are created for their users, then the "publish digital id to gal" should be disabled via a policy. The reason for this is that you don't want your users uploading a 3rd party certificate S/MIME certificate(s) into you Active Directory environment. Instead you should probably look at the whitepapers on Microsoft's site on how to establish a Public Key Infrastructure (PKI). These whitepapers should help you answer the first questions about "without importing digital id?" or "how to publish digital id?" because an Enterprise CA will let you establish templates that will have the CA service publish the user certificate to active directory the instance it is issued. Since it is automatic, the user doesn't have to do anything except maybe wait 24 hours so that a exchange client like Outlook 2003 running in cacahed mode downloads the next differential update of the offline address book. Now I'll climb down off my soap box and do a bit of generalization about the "publish digital id to the gal" button. Basicallly this button was designed for users to upload 3rd party s/mime certificates. If this button is selected and no certificates currently exist on the workstation in question that is designed for S/MIME use, then the error will be generated. "Enid" wrote in message news Here we want to use digital ID (certificate) to announce confidential to all the colleagues. If the user wants to read the confidential mail, he must first imports the digital certificate manually from the mail issuer. I find there is a function "Publish digitial ID to GAL", is that mean if the mail issuer publish the digital ID to GAL, then all the GAL users will get the digitial ID automatically and will be able to read the confidential without import digitial ID ? How to publish digital ID (certificate) to GAL ? I always get "No valid security setting to publish...." when click the "Publish digital ID" button. Anyone have idea ? |
#6
|
|||
|
|||
How to publish digital ID (certificate) to GAL ?
I am so confused !
"an Enterprise CA will let you establish templates that will have the CA service publish the user certificate to active directory the instance it is issued. " In my environment, I did't see any user certificate in any domain computer. Why ? Our outlook user still need to manually import the mail issuer's certificate to read the encrypted mail. "neo [mvp outlook]" wrote: Okay, your question is a bit more complex that just what is the "publish digital id to gal" for. In an environment that has established an Enterprise CA and is storing certificates in Active Directory at the time they are created for their users, then the "publish digital id to gal" should be disabled via a policy. The reason for this is that you don't want your users uploading a 3rd party certificate S/MIME certificate(s) into you Active Directory environment. Instead you should probably look at the whitepapers on Microsoft's site on how to establish a Public Key Infrastructure (PKI). These whitepapers should help you answer the first questions about "without importing digital id?" or "how to publish digital id?" because an Enterprise CA will let you establish templates that will have the CA service publish the user certificate to active directory the instance it is issued. Since it is automatic, the user doesn't have to do anything except maybe wait 24 hours so that a exchange client like Outlook 2003 running in cacahed mode downloads the next differential update of the offline address book. Now I'll climb down off my soap box and do a bit of generalization about the "publish digital id to the gal" button. Basicallly this button was designed for users to upload 3rd party s/mime certificates. If this button is selected and no certificates currently exist on the workstation in question that is designed for S/MIME use, then the error will be generated. "Enid" wrote in message news Here we want to use digital ID (certificate) to announce confidential to all the colleagues. If the user wants to read the confidential mail, he must first imports the digital certificate manually from the mail issuer. I find there is a function "Publish digitial ID to GAL", is that mean if the mail issuer publish the digital ID to GAL, then all the GAL users will get the digitial ID automatically and will be able to read the confidential without import digitial ID ? How to publish digital ID (certificate) to GAL ? I always get "No valid security setting to publish...." when click the "Publish digital ID" button. Anyone have idea ? |
#7
|
|||
|
|||
How to publish digital ID (certificate) to GAL ?
Installing and supporting a certificate authority is not an Outlook
question. However to answer the question, users wouldn't see a certificate installed on their workstation unless the site went with auto-enrollment or the user requested a certificate. "Enid" wrote in message ... I am so confused ! "an Enterprise CA will let you establish templates that will have the CA service publish the user certificate to active directory the instance it is issued. " In my environment, I did't see any user certificate in any domain computer. Why ? Our outlook user still need to manually import the mail issuer's certificate to read the encrypted mail. "neo [mvp outlook]" wrote: Okay, your question is a bit more complex that just what is the "publish digital id to gal" for. In an environment that has established an Enterprise CA and is storing certificates in Active Directory at the time they are created for their users, then the "publish digital id to gal" should be disabled via a policy. The reason for this is that you don't want your users uploading a 3rd party certificate S/MIME certificate(s) into you Active Directory environment. Instead you should probably look at the whitepapers on Microsoft's site on how to establish a Public Key Infrastructure (PKI). These whitepapers should help you answer the first questions about "without importing digital id?" or "how to publish digital id?" because an Enterprise CA will let you establish templates that will have the CA service publish the user certificate to active directory the instance it is issued. Since it is automatic, the user doesn't have to do anything except maybe wait 24 hours so that a exchange client like Outlook 2003 running in cacahed mode downloads the next differential update of the offline address book. Now I'll climb down off my soap box and do a bit of generalization about the "publish digital id to the gal" button. Basicallly this button was designed for users to upload 3rd party s/mime certificates. If this button is selected and no certificates currently exist on the workstation in question that is designed for S/MIME use, then the error will be generated. "Enid" wrote in message news Here we want to use digital ID (certificate) to announce confidential to all the colleagues. If the user wants to read the confidential mail, he must first imports the digital certificate manually from the mail issuer. I find there is a function "Publish digitial ID to GAL", is that mean if the mail issuer publish the digital ID to GAL, then all the GAL users will get the digitial ID automatically and will be able to read the confidential without import digitial ID ? How to publish digital ID (certificate) to GAL ? I always get "No valid security setting to publish...." when click the "Publish digital ID" button. Anyone have idea ? |
Thread Tools | |
Display Modes | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
where is outlook 2003 digital certificate stored | Wole | General Discussion | 0 | November 8th, 2005 03:28 AM |
PKI Certificate question | [email protected] | Contacts | 0 | September 14th, 2005 01:08 AM |
Viewer 2003 - Digital Certificate Tampered With??? | Steve Rindsberg | Powerpoint | 13 | April 12th, 2005 09:47 PM |
Package for CD Digital Certificate Problem | Ken W | Powerpoint | 8 | April 12th, 2005 12:12 AM |
Signing a VBA mde/mdb Access 2003 | John Buckett | General Discussion | 3 | July 3rd, 2004 09:14 PM |