Outlook 2010 Email Encryption and Digitally Signed Certificates

Posted on 2013-10-03
Medium Priority
Last Modified: 2015-11-19
Hello Experts!

I'm currently digging into ways to make our email more secure. I was trying to find information on what I would need to do this with email encryption and digitally signed certificates in Outlook. I also was wondering if it even makes sense or really protects us from unwanted spam and malware. Could anyone explain how I would go about this or what I need to accomplish this setup? Am I able to create these encryption certificates or digitally signed certificates in Exchange or from my SBS 2011 or do I need to go to an external source for them? Also, does this mean that everyone I send an email to would need my certificate?

Thank you in advance,

Question by:BJDalfol9
LVL 22

Assisted Solution

by:Nick Rhode
Nick Rhode earned 1000 total points
ID: 39543456
You could use a self-signed cert from SBS2011 but I never recommend self-signed certificates and instead purchase certificates from 3rd party.  I would say for ranking wise Comodo would be a good one to go with but they are pricey but awsome.  If your looking for a more affordable cert then you can pick up a go-daddy cert for much less.

No everyone does not need your cert it is only verified.

Nice little article on certs and spam:  http://blog.whichssl.com/2013/03/how-ssl-certificates-defend-you-from-spammers/
LVL 18

Expert Comment

by:Steven Harris
ID: 39543469
I also was wondering if it even makes sense or really protects us from unwanted spam and malware.

DSC's will not protect you from incoming emails, they are designed to secure your outbound transmissions.

Author Comment

ID: 39543524
Thanks guys.......So I keep reading how encrypting emails will protect us from spam but i don't see how. Does anyone know anything about how it protects against spam?  I mean I'm still going to be getting emails from people who don't encrypt them so therefore I am still going to get spam, correct?
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

LVL 13

Accepted Solution

Mark Galvin earned 1000 total points
ID: 39543605

Using certs will encrypt the traffic between Outlook and the Exchange server.

It will not stop spam. You need to use something that filters the spam for you. Something like Forefront by MS or a third party tool like Google Apps. Mimecast etc.

As an example, I get my clients to use Office 365, for the most part. One of the clients has a user base of 75 people. Using the provided Forefront service within their Office 365 package, Forefront blocks approx 28,000 spams emails A DAY. Ana all Outlook clients HAVE to use the digi certs provided by Office 365. This secures the traffic between the UK site and the Office 365 servers in Dublin and Amsterdam. Doesn't stop Spam at all.

And even then some spam gets through because the spam robots are getting too clever.

Its a continuing battle/


LVL 22

Expert Comment

by:Nick Rhode
ID: 39543610
In all honesty your always going to get some form of spam 1 way or another.  What I do for spam is use an external mail filter like from MXtoobox, Mailmax, Postini, etc.

Author Closing Comment

ID: 39566121
Thanks everyone!!

Featured Post

Free tool for managing users' photos in Office 365

Easily upload multiple users’ photos to Office 365. Manage them with an intuitive GUI and use handy built-in cropping and resizing options. Link photos with users based on Azure AD attributes. Free tool!

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

The Exchange database may sometimes fail to mount owing to various technical reasons. A dismounted EDB file can be the source of many Exchange errors including mailbox inaccessibility for users. Resolving the root cause of mounting problems becomes …
Organisation is organized in a pattern to flow the day to day business, every application and system is interdepended on each other and when very important “Exchange Server downtime” happened.
In this video I will demonstrate how to set up Nine, which I now consider the best alternative email app to Touchdown.
Through the video, you can check the migration process of Outlook PST file to PDF. Kernel for Outlook to PDF tool can convert Outlook emails with all attributes like Subject, To, From, Cc, Bcc and other folders such as Inbox, Outbox, Sent Items, Jun…

587 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question