This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Hello!
One more question on S/MIME, please:
while sending encrypted message from user 1 (Shannon Emma) to user 2 (Taylor David - and Taylor's certificate is installed on the workstation) I get the following warning:
...maybe Outlook on the Web names Shannon Emmas as a recipient because this message may be read in the Shannon's Sent Items folder and in this context she'll be the "recipient"...?
?
2) this page says:
"If you encrypt an outgoing message and Outlook on the web can’t verify that all recipients can decrypt the message, you’ll see a notice warning you which recipients might not be able to read the encrypted message. You can then send the message anyway, remove those recipients, or retry to check again."
Q2: A recipient would be able to descrypt the message if he/she has the corresponding private key on his/her workstation - how Outlook on the Web on the sender's computer is supposed to check the availability of the private key on the recipient's computer?
Regards,
Michael
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 67%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJS%3C/text%3E%3C/svg%3E)
According to my research, I fould here is an article introduced your concern: How to Configure S/MIME in Office 365
And please check if you have met the requirements list below:
If an Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Oh, yes - this conjecture was correct: "...maybe Outlook on the Web names Shannon Emmas as a recipient because this message may be read in the Shannon's Sent Items folder and in this context she'll be the "recipient"..." - thank you so much!
Regarding the second statement: "If the PKI issued certificate is not available, users will not be able to send signed messages or decrypt the S/MIME messages" - the requirement for each user to have his/her own certificate in the User's Personal store means that user will have their own private/public key pair.
If UserB needs to send an encrypted message to UserA, he/she will need access to the public key (=certificate) of UserA (which is stored on the UserA's computer and - possibly - in AD). The questions:
1) how Outlook may get the UserA's certificate?
2) how Outlook on the Web may get the UserA's certificate?
Regards,
Michael
Hi,
I don't find much introduction about how Outlook and OWA get user's certificate, and I'm afraid there is no such kind of official document provide these information.
You may check if the links below any help.
1.Understanding Digital Certificates
2.Understanding S/MIME
If an Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
joyceshen-MSFT, thank you very much for your help!
Regards,
Michael