Dr. Stephen Henson wrote:
Sending encrypted mail just uses the public key but if SSL client
authentication works then something will use the private key OK.
What about signed mail using that certificate, does that verify OK? Can
thunderbird generated encrypted mail using the same key and certificate be
read using Outlook?
Outlook can send digitally signed emails - and receive - just fine. It
can send encrypted emails that can be read by Thunderbird, but it can't
decrypt them - whether sent by itself or by Thunderbird.
I'm sure it's a problem with how Outlook handles these particular certs.
Something about our "home made" PKI isn't sitting pretty with Outlook.
IE is totally happy with client certs WRT accessing (say) HTTPS Web
servers that require client certs - but Outlook doesn't like it.
--
Cheers
Jason Haar
Information Security Manager, Trimble Navigation Ltd.
Phone: +64 3 9635 377 Fax: +64 3 9635 417
PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]