How to Install S/MIME (and PGP) Encryption Certificates into Microsoft Outlook 2003 and 2007

Article:TECH180515  |  Created: 2012-02-01  |  Updated: 2012-12-02  |  Article URL http://www.symantec.com/docs/TECH180515
Article Type
Technical Solution


Issue




S/MIME in Microsoft Outlook 2003 and Outlook 2007


Solution



S/MIME in Microsoft Outlook 2003

 

Installing your personal S/MIME certificate in Outlook 2003 :

 

When using Outlook you will need to export your certificates with a .pfx extension — this is the kind of file that generally contains both the public and private S/MIME key; it is password-protected.

 

  1. Go to “Tools” > “Options…”
  2. Select “Security” at the top of the window.
  3. Now select “Import/Export…” under “Digital IDs (Certificates)” at the bottom of the window.
  4. Browse to your digital certificate file and then press “Open”
  5. In the “Password” field type in the certificate’s password. Don’t make up a new one.
  6. Finally, in the “Digital ID Name” field enter anything you would like. Perhaps something like “My ID”. Anything you would like to use to identify the ID. This is typically your email address. It does not matter what you enter in this field, but there needs to be something.
  7. Now click on “OK” at the bottom of the screen.
  8. In the window that pops up choose “OK” as the default security level is ok to use.
  9. Once you are back to the “Options” screen select “Settings…” under “Encrypted e-mail”.
  10. Under “Security Settings Name” give you settings a name you would like. It could be your name or some other way to identify the settings.
  11. Don’t changed the settings for “Cryptography Format” (Should be set to S/MIME)
  12. Under “Certificated and Algorithms” select the button “Choose…” to the right of “Signing Certificate”. Select the Certificate Authority file, i.e. “cacert.pem”.
  13. Now select the button “Choose…” to the right of “Encryption Certificate:”. Do not select the Certificate Authority again. Select the regular certificate. This is the one you imported first.
  14. You do not need to change any other settings. Simply press “OK” at the bottom of the window.
  15. You have now successfully set-up a certificate in Outlook 2003. Just press “OK’ at the bottom of the window to save the settings.

 

S/MIME in Microsoft Outlook 2007

Installing your personal S/MIME certificate in Outlook 2007.

 

When using Outlook you will need to export your certificates with a .pfx extension — this is the kind of file that generally contains both the public and private S/MIME key; it is password-protected.

 

  1. Go to “Tools” > “Trust Center…”
  2. In the “Trust Center” go to “E-mail Security”
  3. Under “Digital IDs (Certificates)” select “Import/Export…”
  4. Make sure “Import existing Digital ID from a file” is selected. Then select “Browse”. Browse to where you saved the .pfx certificate file and select it. Then press “Open”
  5. In the “Password” field type in the certificate’s password, as you specified it when you created the certificate. Don’t make up a new one.
  6. Finally, in the “Digital ID Name” field, enter anything you would like. Perhaps something like “My ID”. Anything you would like to use to identify the ID. This is typically your email address. It does not matter what you enter in this field, but there needs to be something.
  7. Now click on “OK” at the bottom of the screen.
  8. In the window that pops up choose “OK” as the default security level is ok to use.

 

Importing Your Certificate Authority Certificate for Use with Outlook 2007 :

 

In Outlook 2007 there is no way to directly import your Certificate Authority certificate into Outlook. In order to import the Certificate Authority certificate you have to do import it through Internet Explorer. Here are the steps to do that:

 

  1. Open Internet Explorer on the machine that has Outlook 2007 installed
  2. Within Internet Explorer to go “Tools” then “Internet Options”
  3. Click on the “Content” tab
  4. Click on the ‘Certificates” button
  5. Click on the “Import” button then click on the “Next” button
  6. Click the “Browse” button and then browse to the cacert.pem file (or whatever you have named the Certificate Authority file)
  7. Click the “Next” button
  8. Click on the “Place all certificates in the following store” button
  9. Click the “Browse” button and then choose “Trusted Publishers” and “Ok”
Click the “Next” button then the “Finish” button.




Article URL http://www.symantec.com/docs/TECH180515


Terms of use for this information are found in Legal Notices