encrypt an email in Outlook

[Lord Dark Helmet]

I want to be able to encrypt emails and send them to various people. I've
obtained a valid certificate from a CA and installed it in Outlook. I've
then imported that certificate in Outlook. When I try to send an encrypted
email to people, I get the following erro messaga "Microsoft Office Outlook
had problems encryptng this message because the following recipients had
missing or invalid certificates, or conflicting or unsupported encryption
capabilities." Obviously I cannot continue and there is no way to send the
encrypted message. Does the person on the other end have to have a separate
certificate before we begin to exchange encrypted messages. I was reading
that both parties have to exchange digital signatures before you can send
encrypted messages. Is that really necessary. Why does the other party need
to have a certificate. All they should need is the cer key file so they can
open the encrypted file. Any help would be appreciated. Thanks

 

[Bob I]

From Outlook Help regarding "encrypting e-mail" please read carefully.

Sending and viewing encrypted e-mail messages requires both sender and
recipient to share their digital ID (digital ID: Contains a private key
that stays on the sender's computer and a certificate (with a public
key). The certificate is sent with digitally signed messages. Recipients
save the certificate and use the public key to encrypt messages to the
sender.), or public key certificate. This means you and the recipient
each must send the other a digitally signed message, which enables you
to add the other person's certificate to your Contacts. Once both
parties have shared certificates, sending and viewing encrypted e-mail
messages between them is the same as with any other e-mail messages. You
can learn about digital IDs here and learn how to get and exchange
digital IDs here.

 

[VanguardLH]

I want to be able to encrypt emails and send them to various people. I've
obtained a valid certificate from a CA and installed it in Outlook. I've
then imported that certificate in Outlook. When I try to send an encrypted
email to people, I get the following erro messaga "Microsoft Office Outlook
had problems encryptng this message because the following recipients had
missing or invalid certificates, or conflicting or unsupported encryption
capabilities." Obviously I cannot continue and there is no way to send the
encrypted message. Does the person on the other end have to have a separate
certificate before we begin to exchange encrypted messages. I was reading
that both parties have to exchange digital signatures before you can send
encrypted messages. Is that really necessary. Why does the other party need
to have a certificate. All they should need is the cer key file so they can
open the encrypted file. Any help would be appreciated. Thanks

Get the public half of the e-mail cert from whomever you want to send an
encrypted e-mail, use it to encrypt your e-mail, and then send it so the
recipient can use their private key to decrypt it.

To send encrypted e-mails means you need the public key from the e-mail
cert of the recipient to whom you are sending your e-mail. You encrypt
using THEIR public key. Anyone receiving this encrypted e-mail won't be
able to decrypt it. Only the recipient whose public key you used from
their e-mail cert has the private key to do the decryption.

Sending encrypted e-mails is an invite process. It is their choice
whether or not senders will send them encrypted e-mails. If the
recipient wants to get secure e-mails, they'll invite the senders by
enabling them. Someone has to send you a digitally signed e-mail. That
means they put their public key into their e-mail that you receive. You
save that contact in your address book. When you want to send them an
encrypted e-mail, you use that stored contact so you can use their
public key to encrypt your message. Only that recipient has the private
key to do the decryption.

Likewise, if you want someone to send you an encrypted message, you will
need to first send them a digitally signed e-mail so they can store a
copy of your public key. They encrypt their message using your public
key (which other users might also have) and send their message to you.
Only you have the private key to decrypt their message. There are 2
pairs of keys in an e-mail cert: the public key and the private key.
You give out the public key to those recipients from whom you want to
receive encrypted e-mails. You're the only one with the private key to
decrypt those encrypted e-mails. Someone intercepting the encrypted
e-mail won't be able to decrypt it even if they also have your public
key. Your private key is needed so don't give it to anyone.