S/Mime AzuerAD/ Office 365

Michael 1 Reputation point
2020-04-07T19:47:14.807+00:00

Hello,

I would like to implement S/Mime in a pure Office 365 environment, i.e. without a local server. How can I link the certificates to AzureAD users.

Thank's for your anwsers.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,668 questions
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Vasil Michev 96,161 Reputation points MVP
    2020-04-07T19:57:02.153+00:00
    0 comments
  2. Kayla Brown 6 Reputation points
    2020-04-24T09:12:00.63+00:00
    1. Create a .SST file for the Trusted Root CA / Intermediate CA of the certificate issued to the users: You can use either Certificate MMC or PowerShellcmdlets to export SST file.
    2. Select Microsoft Serialized Certificate Store(.SST) > Click Next and save the SST file.
    3. Upload .SST to office 365 server using PowerShell. It could look like this $sst = Get-Content TenantRoot.sst -Encoding Byte)
    4. Publish user’s certificate to the Exchange Online GAL (Global Address List) using Outlook. in the Security Settings of the Trust Center.
    5. Type Get-Mailbox <user> | FL or FT user in PowerShell to confirm the certificate is published in AAD (Azure Active Directory).
    6. The end-user will find the certificate in certificates > personal store
    0 comments