microsoft.com Home | |||
http://www.microsoft.com/office/ork |
The first time a user attempts to read or send secure e-mail messages, Microsoft Outlook 2000 triggers a security upgrade feature. To upgrade from Outlook 97 or Exchange Client to Outlook 2000 security, the user’s security file (EPF file) must exist on the computer, and the user must know the password. To upgrade from Outlook 98 security, the user must know the Digital ID password.
During the upgrade process, a Digital ID name is generated for the security keys of each user, which includes one signing key and one encryption key. The user must select a password to associate with the Digital ID name.
The Outlook 2000 upgrade feature attempts to save the security information in a secure store. If the EPF file cannot be found, or the user cannot remember the password, the upgrade feature can be canceled.
If you are using Microsoft Exchange Advanced Security, you can recover the security keys (that is, enroll again) by asking for a new security token from the administrator. The upgrade process must occur before you are security enabled to send and receive secure e-mail messages.
If you are using Microsoft Certificate Server, or a public Certification Authority such as VeriSign, Inc., and you forget your password, the following restrictions occur:
The following procedure describes how Outlook 2000 users can enroll in security by using Microsoft Exchange Key Management Server (KMS). Before you begin this procedure, contact the system administrator for a security token. The request for security enrollment uses this token.
To enroll in security or obtain a certificate using Microsoft Exchange KMS
A message is sent to Microsoft Exchange KMS. After you receive a reply, Outlook 2000 attempts to store your security keys in the secure store.
You are prompted for the password every time you access the keys. However, you can choose to have Outlook 2000 remember the password for a limited period of time.
The dialog box provides the required information about the certificate. If you click No, you experience problems when you attempt to read and send secure messages, and you must repeat the entire enrollment process.
The following procedure describes how Outlook 2000 users can enroll in security by using public certificate authorities.
To enroll in security or obtain a certificate by using external certificate authorities
A Microsoft Web page provides information about obtaining a certificate. The page lists a number of certificate authorities.
While your Web browser is storing your certificate and keys on your computer, you might be prompted to select the security level to associate with your keys.
You are prompted for the password every time you access the keys. However, you can choose to have Outlook 2000 remember the password for a limited period of time.
While storing the certificates, you might be prompted to save the root certificate. The dialog box provides the required information about the certificate. If you click No, you experience problems when you attempt to read and send secure messages. When you experience such problems, contact your certification authority to install another copy of the root certificate.
After the certificate and keys are installed, Outlook can access and use them.
There are several options to choose from when you set up security for your Outlook 2000 users. For more information about security, see Using Security Features in Outlook.
Topic Contents | Previous | Next | Top Friday, March 5, 1999 © 1999 Microsoft Corporation. All rights reserved. Terms of use. | ||
License
|