question

roottec avatar image
roottec asked ·

S/Mime AzuerAD/ Office 365

Hello,

I would like to implement S/Mime in a pure Office 365 environment, i.e. without a local server. How can I link the certificates to AzureAD users.

Thank's for your anwsers.

azure-active-directory
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

michev avatar image
michev answered ·
Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

KaylaBrown-4297 avatar image
KaylaBrown-4297 answered ·
  1. Create a .SST file for the Trusted Root CA / Intermediate CA of the certificate issued to the users: You can use either Certificate MMC or PowerShellcmdlets to export SST file.

  2. Select Microsoft Serialized Certificate Store(.SST) > Click Next and save the SST file.

  3. Upload .SST to office 365 server using PowerShell. It could look like this $sst = Get-Content TenantRoot.sst -Encoding Byte)

  4. Publish user’s certificate to the Exchange Online GAL (Global Address List) using Outlook. in the Security Settings of the Trust Center.

  5. Type Get-Mailbox <user> | FL or FT user in PowerShell to confirm the certificate is published in AAD (Azure Active Directory).

  6. The end-user will find the certificate in certificates > personal store


Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.