We help IT Professionals succeed at work.

Deploying S/MIME on Exchange 2016 on-premises

I am trying to deploy S/MIME in exchange 2016 on-premises environment.
I was able to setup enrollment for domain users through GP.
Is there a way to roll out the S/MIME to all users (Outlook 2016) without having to reach every one and configure individually?

Also, how do I roll it to OWA?

Thanks,
Comment
Watch Question

Top Expert 2016

Commented:
AFAIK OWA doesn't support s/mime
For S/MIME to work every sender needs to have a private certificate and each recipient's public certificate (there has to be a certificate exchange take place.. i.e. you can put the public keys in a web server directory i.e. pki.example.com and it is perfectly secure since without the private key the public key cannot be abused.

Author

Commented:
I have seen articles that suggest you need to create .SST certificate export and than import it into OWA.  I wasn't sure if it has to be done for every user, or it can be done in bulk.
Top Expert 2016
Commented:
same rules apply you must have a certificate for that user in your credential store.  (only works with Internet Explorer)

Author

Commented:
Thank you for your help.

Author

Commented:
OK, Thanks