Exchange 2000 with CA or KMS

Discussion in 'Microsoft Certification' started by Miha, Jul 14, 2005.

  1. Miha

    Miha Guest


    In our organization we want to implement digital certificates for signing
    and crypting e-mail.

    We have Win2000 SBS (Win2000 with AD domain, Exchange 2000 server).

    As I know I can digitally sign every e-mail message with my private key, and
    also crypt it if I have sender's public key. So the request is:

    - if we could have some kind of 'central storage' of recipient's public keys
    (I assume that after a mail is accepted that also contains senders public
    key, this key is automatically stored in this 'central storage' in Active
    Directory or something), so all people in our organization could use this
    key to send encrypted e-mail to this sender.

    So each of our Exchange users don't have to have sender's public key,
    because this key will be available through AD or 'central storage' to all

    Looking for some clues how to done this, I found that Exchange 2000 has KMS
    service that could achieve this functionality, but since we don't have much
    experience on this side, I'm we be very grateful if someone could explain me
    a bit more about this or maybe point me to the right direction.

    Thank you all in advance

    Best regards

    Miha, Jul 14, 2005
    1. Advertisements

  2. Miha wrote:
    Public certificate for a user is published using AD and GAL - KMS gives
    You option for key management and recovery.

    This article should clarify for You usage of CA and KMS:
    Tomasz Onyszko, Jul 15, 2005
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.