Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Sending Encrypted Emails

Status
Not open for further replies.
hmdeassis

hmdeassis

MIS
May 18, 2000
55
US
Hello-

I currently have Exchange 2007. My boss wants to configure Exchange to send out encrypted emails.

Any ideas on how I can get this going? Where in Exchange do I go to make this change.

All the help would be greatly appreciated.

Thanks
 
Sort by date Sort by votes
Any takers?

There isnt much detailed information out there that gives you exact steps. Any help would be greatly apreciated.
 
Upvote 0 Downvote
Don't bump your post on the same day. You'll get the post red flagged and it will be deleted.

Please define your requirements. Encrypted to who? Internal users? External users? Partners? What client do your users use?

Pat Richard MVP
Plan for performance, and capacity takes care of itself. Plan for capacity, and suffer poor performance.
 
Upvote 0 Downvote
Oops..sorry

All users currently use Outlook client. All messages sent outbound from the office needs to be encrypted at the massage level and not at the transport level.
 
Upvote 0 Downvote
What version of Outlook? All messages leaving your environment? That's not going to happen. In order to support message encryption, the sender and recipient must exchange keys. You can't encrypt an email message unless you have the recipient's public key. If that recipient doesn't have a key, you simply can't send them an encrypted message. And since most users don't have encryption keys, you're out of luck.

Pat Richard MVP
Plan for performance, and capacity takes care of itself. Plan for capacity, and suffer poor performance.
 
Upvote 0 Downvote
Outlook 2003 and 2007. The server is Exchange 2007. How can I setup at the server level encryption? What do I exactly need? A public key from Comodo, Verisign?

What do I excatly need to get this accomplished and the steps.

Thanks for taking the time.
 
Upvote 0 Downvote
I'm not sure I understand your question. If you want to encrypt the CONNECTION between your server and receiving servers (transport level), you need a publicly trusted certificate such as Digicert for the name presented when your server sends mail (generally the name in the send connector). You can then enable that certificate for SMTP, and servers will use TLS to transmit email messages.

Pat Richard MVP
Plan for performance, and capacity takes care of itself. Plan for capacity, and suffer poor performance.
 
Upvote 0 Downvote
Not at the transport level.The encryption must be done at the message level. I need to know how can it be done at the message level and not at the transport level.
 
Upvote 0 Downvote
You can't encrypt mail messages in Exchange without public and private keys. Period. And even then, there is complexity around transport rules being able to look at the content in order to fire appropriate rules. There is complexity around mobile devices, and clients that might not support encryption (think non-IE OWA).

You can encrypt the transport.

Pat Richard MVP
Plan for performance, and capacity takes care of itself. Plan for capacity, and suffer poor performance.
 
Upvote 0 Downvote
Are there any instructions or steps on how to acomplish this?
 
Upvote 0 Downvote
Sniper I thought this was possible? however the last time I looked into this it was a while ago on Exchange 2003. I thought you could install a user certificate (public one of course) and Outlook (not exchange) encrypts the message. It only encrypts the content however so the email headers are unencrypted so Exchange knows where to send it etc. This can be unencrypted at the other end using the public key as it was encrypted with the private key.
This would mean the receiver wouldn't need any certs installed.

Am I missing something?

Take a look at my IT blog guides, knowledgebase and technical resources at
 
Upvote 0 Downvote
Yes. Outlook won't let you send a message to a recipient unless it has the recipient's key (generally as a the result of you receiving a digitally signed message from that person - it then stores that certificate in the contact for that person). And they will need your key to decrypt. Which means a PKI accessible to the Internet.

Pat Richard MVP
Plan for performance, and capacity takes care of itself. Plan for capacity, and suffer poor performance.
 
Upvote 0 Downvote
So if we give the recipeint the PKI they should be able to access the encrypted message?
 
Upvote 0 Downvote
PKI is not something you give a user. It's a Public Key Infrastructure. It's what handles keys for your users. Nothing changes. Keys are required on both sides.

Pat Richard MVP
Plan for performance, and capacity takes care of itself. Plan for capacity, and suffer poor performance.
 
Upvote 0 Downvote
My question to be more precise is how will the other users on the other side be able to open the email. How can they obtain a KEY?
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

IcarusHallsorts
  • Locked
  • Question
VBA to create output file of headers of selected emails
Replies
0
Views
1K
IcarusHallsorts
IcarusHallsorts
m245
  • Locked
  • Question
Adding a disclaimer for all outgoing emails in Exchange 2013 Standard Edition
Replies
0
Views
1K
m245
m245
bawalker
  • Locked
  • Question
Exchange 2010 Stops Sending/Recieving Mail every 4-6hrs
Replies
1
Views
108
DrB0b
DrB0b
SWC6284
  • Locked
  • Question
Exchange 2011 - mail bouncing back from from one user sending scans via address book on Fuji Xerox
Replies
0
Views
73
SWC6284
SWC6284
M
  • Locked
  • Question
[SOLVED] Unable to send TLS emails via Exchange, but can receive
Replies
1
Views
91
member 1677784
M

Part and Inventory Search

Sponsor

Back
Top