Setting Up Outlook 2010 to Use Signing and Encryption Certificates
- Operating System: Windows XP, Windows Vista, Windows 7
- Application: Outlook 2010
- Make sure that you have imported your certificates into the Windows Certificate store.
- Open Outlook.
- From the File menu, click the Options menu, select the Trust Center section and click the Trust Center Settings button.
- Click E-mail Security section.
- Select the following options:
- Add Digital Signature to Outgoing Messages. This option includes your signing certificate on all outgoing messages.
- Send clear text signed messages when sending signed messages. This ensures that recipients can read your signed messages. It is especially important if your recipient is using a Web-based or mobile mail client.
For encryption, ITS recommends that you do not select the option to "Encrypt contents and attachments for outgoing messages." ITS recommends that you manually choose encryption for individual messages rather than setting it by default.
Note: You can send an encrypted message only if you have the recipient's public key.
Click the Settings button. Outlook displays options for your signing and public encryption certificates under Certificates and Algorithms. Outlook includes your public signing certificate when it sends your signing certificate so that other users may send you encrypted messages.
- Click the Choose button to the right of Signing Certificate, select your certificate from the list, and click OK.
- Select Hash Algorithm SHA1.
- Click the Choose button to the right of Encryption Certificate, select your certificate from the list, and click OK.
- Select Encryption Algorithm 3DES or AES 256-BIT.
- Click OK again.
Send an email to yourself as a test. Delivered messages display the signing icon, encryption icon, or both, depending on the options you selected.
Note: If you are using Windows Vista or Windows 7, recipients of your emails may not be able to read your encrypted messages if they are using an older email client. To fix this problem, follow the steps below:
From the Tools menu, select Trust Center and click the E-mail Security section.
- Under the Encrypted e-mail header, click the Setting button.
- Under the Certificates and Algorithms section, from the Encryption Algorithm drop-down menu, select 3DES.
- Click OK, then click OK again.
Last updated December 10, 2012 @ 3:00 pm