If you only deal with one partner organization that's probably easy from the admin point of view to trust their self-signed certs. But if everyone gets certs from a trusted third-party CA, I think it will make everyone's life easier.
-----Original Message----- From: Clemens, Rick [mailto:[EMAIL PROTECTED] Sent: Thursday, December 04, 2003 5:48 PM To: Exchange Discussions Subject: RE: S/MIME I believe that as long as both parties are using S/MIME you can just exchange Certificates and put the other government agencies certificates in your trusted list in KMS. It still requires that you use Outlook and Contacts to hold their public key. Someone please correct me if I'm wrong!!!!!! -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Bowles, John (OIG/OMP) Posted At: Thursday, December 04, 2003 1:48 PM Posted To: Exchange Discussion Conversation: S/MIME Subject: RE: S/MIME I have a few questions here that I'd like to put out there. Now, mind you. I'm not an expert in this field. That's why I'm turning to the people on this list for advice. With that said. -Since we have a requirement for secure messaging over the internet with other government agencies. We would have to get a third party CA to accomplish this. The other agencies that we would want to communicate with also would have to go through a third party as well to obtain a CA so we can transmit messages securely between one another? -Also, since we also have a requirement for us to have secure messaging internally. We already have a root CA in place within our organization. Setting up S/MIME internally isn't that hard. But if we already have this root CA in place and we needed to obtain a third party CA. How would we implement this third party CA into our already existing root CA? I'm sure if there is a way to do this. Are there any docs that describe how to accomplish this feat? Thank you, _________________ John Bowles Exchange Engineer OIG/HHS [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Tony Hlabse Sent: Thursday, December 04, 2003 2:05 PM To: Exchange Discussions Subject: RE: S/MIME which client will be signing the message? Also which version of Exchange From: "Bowles, John (OIG/OMP)" <[EMAIL PROTECTED]> Reply-To: "Exchange Discussions" <[EMAIL PROTECTED]> To: "Exchange Discussions" <[EMAIL PROTECTED]> Subject: S/MIME Date: Thu, 4 Dec 2003 13:39:45 -0500 All, I'm trying to setup S/MIME since we all of a sudden require message security within our organization. I'm trying to get an understanding on how this works in the real world. I've setup a test lab here at work. But that can only help me understand how to get things done internally. I'm looking at a braoder scope of allowing our messages to be secure while passing over the internet to other corporations etc. Can someone point me in the direction on what I need to read to understand this a little bit better I'd really appreciate it. Also, if anyone wants to contact me offline. I have a few questions that I'd like answered if you have time. TIA, _________________ John Bowles Exchange Engineer OIG/HHS [EMAIL PROTECTED] _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchange&text_mode=&; lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] _________________________________________________________________ Don't worry if your Inbox will max out while you are enjoying the holidays. Get MSN Extra Storage! http://join.msn.com/?PAGE=features/es _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchange&text_mode=&; lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchange&text_mode=&; lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchange&text_mode=&; lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchange&text_mode=&lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED]
