Solved

Outlook 2010 will not send or receive Signed/Encrypted Emails

Posted on 2013-05-16
12
4,572 Views
Last Modified: 2013-07-31
Hello All:

Detail:  Windows 7 64 Bit, Outlook 2010 64 Bit, Exchange 2010, Testing with users/email accounts in GAL before email goes out to gov't.  Certificate were given by SafeNet to obtain access to Gov't Websites (JPAS and STEPP).
ActiveSync with logon to workstations for exchange.  

Problem:  An Error Occurred in the underlying security system. The Keyset is not defined.

Steps Taken:
Created new profiles
Turned off & on Cache mode
Outlook.exe /safe
Email > Options > Trust Center > Email Security > Default Settings : My S/MIME Settings (kbolt@gbhawk.com)]
Email Security > Settings > Signing Certificate:  Cert given by SafeNet
Email Security > Settings > Encyrption Certificate:  Cert given by SafeNet
Tried sending with & without Send these certificates with messages
Exported & Imported certificate to .CER with my own profile on personal contact

Any Help Would be Greatly Appreciated because I'm going to pull my hair out.

Edit:
http://www.experts-exchange.com/R_21010.html
Modulus_Twelve
0
Comment
Question by:synertia
  • 8
12 Comments
 
LVL 21

Accepted Solution

by:
Haresh Nikumbh earned 500 total points
Comment Utility
The above error message occurs if there is not a digital certificate available for the sender or recipient on your workstation.

Outlook cannnot send a signed or encrypted or in some instances view an S/MIME message.
As a workaround, you can use the following instructions to manage certificates for Outlook 2007 and 2010.

    Open a digitally signed message from the recipient.
    Right-click on the name in the "From:" box and choose "Add to Outlook Contacts"
    The contacts window will open next click on the "Save & Close" button in the upper-left corner.
    Verify this setting in Outlook:UW Digital ID (Win) - Outlook 2007 & 2010 - Messages Display as Encrypted when they are only Signed


http://kb.wisc.edu/page.php?id=23507
0
 

Author Comment

by:synertia
Comment Utility
takecoffee:  thanks for the fast reply.

Problem.  Internal users are part of the GAL so we can not 'open a digitally signed message from the recipient' when we can't send our cert.
(If I am reading your suggestion correctly)
0
 

Author Comment

by:synertia
Comment Utility
Update:

Outlook 64 Bit is still not excepting certificate through IdenTrust.  

Following steps also tried:

exported cert & imported cert
tried to publish to GAL in Exchange 2010 --- Permissions stopped in Outlook 2010 and inside Exchange, Error while trying to upload cert
AD on exchange 2010 server > Published Certs > Will not allow me to upload any certs
0
 

Author Comment

by:synertia
Comment Utility
Update:

OWA not sending certificate as well. Error code: 0x80090020

Contacting IdenTrust.
0
How to improve team productivity

Quip adds documents, spreadsheets, and tasklists to your Slack experience
- Elevate ideas to Quip docs
- Share Quip docs in Slack
- Get notified of changes to your docs
- Available on iOS/Android/Desktop/Web
- Online/Offline

 

Author Comment

by:synertia
Comment Utility
1 hour with IdenTrust ... Not a cert issue.  GPO or Exchange stopping signing ?
0
 

Author Comment

by:synertia
Comment Utility
Okay ... Interesting update to anyone following.

I was able to do follow these instructions from MS  http://support.microsoft.com/kb/2497165 and was able to send now on OWA but Outlook 2010 64-Bit is still stopping me.
0
 

Author Comment

by:synertia
Comment Utility
still having errors. OWA working but really doesn't help ... Need Outlook

Thanks for looking
0
 

Author Comment

by:synertia
Comment Utility
thanks all experts for the feedback.
0
 

Author Closing Comment

by:synertia
Comment Utility
Please close ticket as no one responded.  I had to go ahead and spend the money with Microsoft & found it to be an 64-bit problem.  I can not install the 32-bit due to other MS 64 bit products on the workstations.
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

Utilizing an array to gracefully append to a list of EmailAddresses
Many companies are looking to get out of the datacenter business and to services like Microsoft Azure to provide Infrastructure as a Service (IaaS) solutions for legacy client server workloads, rather than continuing to make capital investments in h…
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now