• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 211
  • Last Modified:

How to encrypt \ password protect a email when sending an email few external users

Hi

We use exchange 2007 and outlook 2010. One of the users has asked, that they want to send an email to few external users and the email they send must me encrypted.
(something like they should be able to open by a password, don't know how it works)

Is there a way to do this? Any suggestions will be helpful. Please can some on post me step by step tutorials to achieve this.
Thanks
0
lianne143
Asked:
lianne143
  • 5
  • 4
  • 4
9 Solutions
 
Saurabh Singh TeotiaCommented:
0
 
Saurabh Singh TeotiaCommented:
And here is a step by step guide with screenshots for the same...

https://www.ablebits.com/office-addins-blog/2014/04/11/email-encryption-outlook/

Again this will encrypt your email..However their is no way to password protect an email through outlook..In order to do that you can put that message in word file and password protect that attachment word file..
0
 
lianne143Author Commented:
Hi Saurabh

if I do it  in this way  , it is asking for a digital ID, where do I get the digital ID\how do I generated the ID
 and how would the recipient open the encrypted message.

https://support.office.com/en-au/article/Encrypt-email-messages-373339cb-bf1a-4509-b296-802a39d801dc
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

 
Saurabh Singh TeotiaCommented:
The second link tells you how to generate a digital id and you need to share this certificate with the end users whom you are sending this email to in order for them to access the email.
0
 
Dave HoweSoftware and Hardware EngineerCommented:
You can get a free (official!) one from here - those are intended for home users, but the licence doesn't say you can't use them commerically (read the licence first, of course)

If you want to issue your own, then XCA can be used, as can the microsoft Enterprise CA that comes with windows server edition.
0
 
lianne143Author Commented:
Hi Saurabh

If I send a encrypted message , how will the recipient open it, Not sure how it works.
Please let me know how this will work, just trying to understand

Thanks
0
 
Saurabh Singh TeotiaCommented:
Hi Lianne...

If you go through this link..

https://www.ablebits.com/office-addins-blog/2014/04/11/email-encryption-outlook/

Email encryption in Outlook protects the privacy of messages you send by converting them from readable text into scrambled enciphered text.

To be able to send and receive encrypted email messages, you need two basic things:

    Digital ID (encryption email certificate). We have discussed how to get a digital ID and set up the certificate in Outlook in the first part of the article.
    Share your public key (which is part of the certificate) with the correspondents you wish to receive encrypted messages from. See the step-by-step instructions on how to share public keys.

You need to share the certificates with your contacts because only the recipient who has the private key that matches the public key the sender used to encrypt the email can read that message. In other words, you give your recipients your public key (which is part of your Digital ID) and your correspondents give you their public keys. Only in this case you will be able to send encrypted emails to each other.

If a recipient who does not have the private key matching the public key used by the sender tries to open an encrypted e-mail, they will see this message:

"Sorry, we're having trouble opening this item. This could be temporary, but if you see it again you might want to restart Outlook. Your Digital ID name cannot be found by the underlying security system."

So, let's see how sharing digital IDs is done in Outlook.

You need to share these certificates with the end users in order for them to view the email...

Saurabh...
0
 
Dave HoweSoftware and Hardware EngineerCommented:
The system works like this (this is the TL;DR version :)

*RECIPIENT* obtains a keypair, either from a Commercial CA or internal CA, as detailed.

*RECIPIENT* sends certificate (not entire keypair, just the cert) to intended senders - you can do this just by sending a signed email to them in most clients (outlook is one of them)

*SENDER* imports the certificate from the recipient to his local machine - that sender can now send encrypted emails to that recipient.

for symmetry, both parties must do this - that way, the replies can be encrypted too :)
0
 
lianne143Author Commented:
Hi

I went through this link  and  when I go to the in the Trust center -E-mail security - when I click Click Settings
https://www.ablebits.com/office-addins-blog/2014/04/11/email-encryption-outlook/

I get a welcome to E-mail Security window, In there it gives me a Get digital ID and Ok option.
I don't get the Change security settings windows as shown in the link.
If I click get Digital ID it takes me to the following link and ARX CoSign® Digital Signatures,Avoco secure2trust,ChosenSecurity ,Comodo ,GlobalSign ,My Credential™,VeriSign  are listed.

https://support.office.com/en-gb/article/Digital-ID-b06cfc76-56a1-4a74-b2dd-91a55de79cdf?Assetid=HA001050484&ver=14&app=outlook.exe&CorrelationId=f6da5f15-d9ab-4a54-82f3-c56b5d9284c5&ui=en-US&rs=en-GB&ad=GB


Please help, how to go about.
0
 
Saurabh Singh TeotiaCommented:
Yeah you need to get yourself a digital certificate which you can get from those links.. or like Dave said you can get one from the following link:-

https://www.comodo.com/home/email-security/free-email-certificate.php

Till the time you get this certificate you won't be able to encrypt..
0
 
Dave HoweSoftware and Hardware EngineerCommented:
note - if *you* have a cert, you can sign. you need the recipient's cert before you can encrypt. ..
0
 
lianne143Author Commented:
Hi

I went to COMODO and it created a certificate and now  I can see the certificate is imported into my local PC.

Will I need to follow the same procedure to get a digital certificate on the recipient PC who are located outside our organisation\ will my imported certificate be enough to send a encrypted email.

Sorry if I am asking silly question, just trying to understand, before I implement on the recipient PC

Thanks
0
 
Dave HoweSoftware and Hardware EngineerCommented:
No. the recipient needs to follow that procedure, then you both need to send a signed (not encrypted) message to each other. That signed message will have the public certificate in it, so each of you can import the public certificate of the other - once that is done, you can use that (imported) certificate to verify signatures and encrypt to the party you received it from.

In summary, with a COMODO keypair you can
* send signed email.
* decrypt encrypted mail sent to you.

with your correspondent's public certificate, you can
* send encrypted email to them.
* verify signed email from them.

This is true of other PKI based systems, such as pgp, too.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Cloud Class® Course: Python 3 Fundamentals

This course will teach participants about installing and configuring Python, syntax, importing, statements, types, strings, booleans, files, lists, tuples, comprehensions, functions, and classes.

  • 5
  • 4
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now