asked on

Exchange 2007 Digital Signature S/MIME for OWA

We have exchange 2007 SP3 on an old server 2003R2. The users are wanting to start sending digital signatures (encrypt their outgoing email to their clients). Right now I just want to focus on the OWA users. So all my users access the OWA by going to https://remote.mycompany.com/owa (where remote.mycompany.com is the same on the Certificate). When I go to send an email with it digitaly signed I get the following error.

I wanted to check the Certificate being used so i had to enable a registry entry...
Expanded HKLM\System\CurrentControlSet\services\MSExchangeOWA\SMIME
Right clicked the SMIME key and click New and click DWORD (32-bit)
Named the new DWORD value AllowUserChoiceOfSigningCertificate
Double clicedk AllowUserChoiceOfSigningCertificate and set the value to 1.

I click options > email security > click manually pick the certificate it says none and when i click the "choose signing certificate..." there is nothing to choose its totally blank.

Daniel Booker

ASKER

I saw this, but the steps are for exchange 2013 and not 2007

http://windowsitpro.com/exchange-server/encryption-exchange-online-part-6

ASKER CERTIFIED SOLUTION

Amit Kumar

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial

Daniel Booker

ASKER

Ok, so each individual workstation that the users are on will need to generate a local CA?

The main thing i'm shooting for right now is that all OWA, which I was hoping it would be able to pull the certificate off exchange server. I guess this is not possible because i have no clue how every i could generate a certificate for all the workstations.

Amit Kumar

See if this article helps you

Daniel Booker

ASKER

I guess the reason why I cant sign signatures is I have not done Certificate Enrollment wizard?

Amit Kumar

True, you will have to generate certificate for users.