This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 28.000000000000004%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EL%3C/text%3E%3C/svg%3E)
Hello folks!
I've been asked to implement personal certificates company-wide in order to digitally sign mails for internal and external verification. In a second step these certificates might be used to encrypt mails as well.
Now I'm not understanding the procedure at all and was hoping to find answers here.
We're using Itune for deployment in an Cloud-only (Azure) environment. So far we're not having a PKI platform or anything like that.
--- Do I need an external PKI like digicert?
--- What roles / connectors do I need in Azure?
Thank you very much for every hint.
Kind regards
Lukas CNEXT
@Lukassss1982431 Thanks for posting in our Q&A.
Please refer to the following link:
https://learn.microsoft.com/en-us/mem/intune/protect/certificates-s-mime-encryption-sign
Hope it is what you want.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 78%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
Just checking in to see if the below answer helped.
Have you seen the Azure Key Vault’s certificate management service?