Support > Digital Certificate Instructions > Encrypting Messages
|
|
Encrypting a Message with Outlook 2000
E-mail messages are relatively easy to intercept and read. With Outlook 2000, you can encrypt
your e-mail messages so that only the intended recipients can read them.
To encrypt a message, you must have a copy of the intended recipient's certificate.
The easiest way to get a copy of someone's certificate is to have them send you a signed message.
When you receive a signed message, you can store the sender's certificate in your address book.
For more information about storing certificates in your address book,
see Adding a Certificate to Your Address Book.
The Encrypted icon indicates that a message has been encrypted. When you receive an encrypted
message, Outlook 2000 automatically unencrypts the message and displays the Encrypted icon when
the message is viewed.
You can encrypt individual messages or configure your e-mail security options to automatically
encrypt all e-mail messages to recipients whose certificates are stored in your address book.
For information on selecting the certificate to use when encrypting messages,
see Choosing a Default Certificate for Signing and Encrypting Messages.
|
Encrypting a Message with Netscape Communicator
E-mail messages are relatively easy to intercept and read. With Netscape Messenger,
you can encrypt your e-mail messages so that only the intended recipients can read them.
To encrypt a message, you must have a copy of the intended recipient's certificate.
The easiest way to get a copy of someone's certificate is to have them send you a signed message.
Once you receive it, Netscape puts the certificate in the certificate database automatically.
You can search for a person's certificate by clicking the Security button, then clicking
People under Certificates.
You can encrypt individual messages or configure your e-mail security options to automatically encrypt
all e-mail messages to recipients whose digital certificates you have. For information on selecting the
certificate to use when encrypting messages, see
Choosing a Default Certificate for Sending Messages.
|
Encrypting a Message with Eudora Pro
E-mail messages are relatively easy to intercept and read. With Eudora Pro 4.1 and the S/MIME plug-in WorldSecure Client 3.0,
you can encrypt your e-mail messages so that only the intended recipients can read them.
To encrypt a message, you must have a copy of the intended recipient's certificate.
The easiest way to get a copy of someone's certificate is to have them send you a signed message.
When you receive a signed message, you can store the sender's certificate in your address book.
For more information about storing certificates in your address book, see
Adding a Certificate to Your Address Book.
You can encrypt individual messages or configure your e-mail security options to automatically encrypt
all e-mail messages to recipients whose digital certificates you have. For information on selecting
the certificate to use when encrypting messages, see
Choosing a Default Certificate for Sending Messages.
|
|
Back to Top
|
Encrypting Individual Outgoing Messages
|
Retrieving in Internet Explorer 5.0 and above without cookie
If you are running Internet Explorer 5.0 and above and the IdenTrust cookie is not detected
(i.e., the DST Root CA X1 is not in the browser), then you must install the root certificate
and then the certificate chain (which consists of the S/MIME certificate and the sub-CA
certificates). To retrieve the required certificates in this scenario, complete the
following steps:
|
| |
1 |
Go to the URL specified in the letter you received upon approval - this URL is Certificate Issuance page. |
| |
2 |
Enter the Activation Code provided in the letter. |
| |
3 |
Enter the Passphrase you specified when you applied for the certificate in the Your Passphrase field, and then Click Retrieve. The Certificate Retrieval Instructions appear. |
| |
4 |
Print the instructions by Clicking the Print button in your browser's toolbar. |
| |
5 |
Click the link that says "Retrieve your Certificate."
A message appears that asks, "Do you want to ADD the following certificate to the Root Store?"
Note: If this message does not appear, the root certificate has already been installed. Skip to step 7
|
| |
6 |
Click Yes. The Status Screen appears and displays information about the certificate. |
| |
7 |
Click Continue. The retrieval process is complete. |
|
You have now successfully installed your digital certificate to your Internet Explorer browser.
Your computer is now capable of sending digitally signed messages to others.
|
Back to Top
|
Retrieving in Netscape 4.5.1 and above with cookie
If you are running Netscape 4.51 and above and the DST cookie is detected
(i.e., the IdenTrust|DST Root CA X1 is already in the browser), you are taken directly
to the retrieval screen.
To retrieve an S/MIME certificate in this scenario, complete the following steps:
|
| |
1 |
Go to the URL specified in the letter you received upon approval - this URL is Certificate Issuance page. |
| |
2 |
Enter the Activation Code provided in the letter. |
| |
3 |
Enter the Passphrase you specified when you applied for the certificate in the Your Passphrase field, and then click Retrieve. The Status Screen appears and displays information about the certificate. |
| |
4 |
Click Continue to retrieve the certificate. The retrieval process is complete. |
|
Back to Top
|
Retrieving in Netscape 4.5.1 and above without cookie
If you are running Netscape 4.51 and above and the DST cookie is not detected
(i.e., the DST Root CA X1 is not in the browser), you must install the root certificate,
then the certificate chain (which consists of the S/MIME certificate and the sub-CA certificates).
To retrieve the required certificates in this scenario, complete the following steps:
|
| |
1 |
Go to the URL specified in the letter you received upon approval - this URL is Certificate Issuance page. |
| |
2 |
Enter the Activation Code provided in the letter. |
| |
3 |
Enter the Passphrase you specified when you applied for the
certificate in the Your Passphrase field, and then click Retrieve.
The Certificate Retrieval Instructions appear.
|
| |
4 |
Print the instructions by clicking the Print button in your browser's toolbar. |
| |
5 |
Click the link that says "Install the DST Root Certificate to your browser."
Note: If a message appears that states this certificate already exists in your database, the root certificate has already been installed. Skip to step 9.
|
| |
6 |
Follow the instructions in the New Certificate Authority import wizard to install the root certificate:
a. On the screen that says "Are you willing to accept this Certificate Authority...?" place checks in all three boxes.
b. On the screen that says "You have accepted this Certificate Authority. Please enter a short name... type "DST Root CA X1" in the Name box.
c. In all the other screens, leave the default selections.
|
| |
7 |
When the New Certificate Authority import wizard is complete, click the link that says "Retrieve your Client Certificate." The Status Screen appears and displays information about the certificate. |
| |
8 |
Click Continue. The retrieval process is complete. |
|
Back to Top
|
Retrieving in Netscape 4.0 - 4.5 with cookie
If you are running Netscape 4.0 to 4.5 and the DST cookie is detected (i.e., the DST Root CA X1 is already in the browser), you receives online instructions for retrieval. To retrieve an S/MIME certificate in this scenario, complete the following steps:
|
| |
1 |
Go to the URL specified in the letter you received upon approval - this URL is Certificate Issuance page. |
| |
2 |
Enter the Activation Code provided in the letter. |
| |
3 |
Enter the Passphrase you specified when you applied for the certificate in the Your Passphrase field, and then click Retrieve.
The Certificate Retrieval Instructions appear.
|
| |
4 |
Print the instructions by clicking the Print button in your browser's toolbar. |
| |
5 |
Click the link that says "Retrieve your Certificate." |
| |
6 |
The New User Certificate window appears.
|
| |
7 |
Click OK. The Save User Certificate window appears. |
| |
8 |
If you want to save a copy of the certificate to your hard drive, you can click Save As. You may want to save a copy of your certificate in order to have a backup copy, should you lose your certificate. If you do not want to save a copy, skip to step 9.
a. When prompted, enter a password to protect the certificate you are saving, and choose the location in which you want to save it.
b. Select Save.
|
| |
9 |
Click Continue to retrieve the certificate. The Status Screen appears and displays information about the certificate. |
| |
10 |
Click Continue. The retrieval process is complete. |
|
Back to Top
|
Retrieving in Netscape 4.0 - 4.5 without cookie
If you are running Netscape 4.0 to 4.5 and the DST cookie is not detected (i.e., the DST Root CA X1 is not in the browser), you must install the root certificate, then the certificate chain (which consists of the S/MIME certificate and the sub-CA certificates). To retrieve the required certificates in this scenario, complete the following steps:
|
| |
1 |
Go to the URL specified in the letter you received upon approval - this URL is Certificate Issuance page. |
| |
2 |
Enter the Activation Code provided in the letter. |
| |
3 |
Enter the Passphrase you specified when you applied for the certificate in the Your Passphrase field, and then click Retrieve.
The Certificate Retrieval Instructions appear.
|
| |
4 |
Print the instructions by clicking the Print button in your browser's toolbar. |
| |
5 |
Click the link that says "Install the DST Root Certificate to your browser."
Note: If a message appears that states this certificate already exists in your database, the root certificate has already been installed. Skip to step 7.
|
| |
6 |
Follow the instructions in the New Certificate Authority import wizard to install the root certificate:
a. On the screen that says "Are you willing to accept this Certificate Authority...?" place checks in all three boxes.
b. On the screen that says "You have accepted this Certificate Authority. Please enter a short name... type "DST Root CA X1" in the Name box.
c. In all the other screens, leave the default selections.
|
| |
7 |
When the New Certificate Authority import wizard is complete, click the link that says "Retrieve your Certificate." The New User Certificate window appears. |
| |
8 |
Click OK. The Save User Certificate window appears. |
| |
9 |
If you want to save a copy of the certificate to your hard drive, you can click Save As. You may want to save a copy of your certificate in order to have a backup copy, should you lose your certificate. If you do not want to save a copy, skip to step 10.
a. When prompted, enter a password to protect the certificate you are saving, and choose the location in which you want to save it.
b. Select Save.
|
| |
10 |
Click Continue to retrieve the certificate. The Status Screen appears and displays information about the certificate. |
| |
11 |
Click Continue. The retrieval process is complete. |
|
You have now successfully installed your digital certificate to your Netscape browser. Your computer is now capable of sending digitally signed messages to others.
|
Back to Top
|
Outlook 2000 - Complete the following steps to encrypt an individual outgoing message in Outlook 2000:
|
| |
1 |
Open Outlook 2000. |
| |
2 |
Click the New Mail Message button (the far left button on the toolbar) to begin a new message. A new message window appears. |
| |
3 |
Click the Options button in the toolbar. The Message Options dialog box appears. |
| |
4 |
Check the "Encrypt message contents and attachments" check box. |
| |
5 |
Click Close to close the Message Options dialog box.
The message is now encrypted with the certificate you selected in Outlook 2000's security
settings (see Choosing a Default Certificate for Signing and Encrypting Messages).
When the addressee receives the message, the Encrypted icon appears in the upper right corner
of the message.
|
|
Outlook Express - Complete the following steps to encrypt an individual outgoing message in Outlook Express:
|
| |
1 |
Open Outlook Express. |
| |
2 |
Click the New Mail button to begin a new message. A new message window appears. |
| |
3 |
In the Tools menu, click the Encrypt Message option.
The Encrypted icon appears on the right side of the address pane, indicating that the message is encrypted. |
|
Note: The Encrypt Message option is a toggle option. Clicking it again removes the encryption from the message.
|
Netscape Communicator - Complete the following steps to encrypt an individual outgoing message in Netscape Communicator:
|
| |
1 |
Open Netscape Messenger. |
| |
2 |
Click the New MSG button. The Composition window appears. |
| |
3 |
Click the Message Sending Options tab. |
| |
4 |
Check the Signed check box and the Encrypted check box to sign and encrypt the message.
Note: You will not be able to encrypt the message unless the e-mail address you type in the message matches the e-mail address in the certificate.
|
|
When the recipient receives the message, the Encrypted and Signed icon appears in the upper right corner of the message.
|
Eudora Pro 4.1 - Complete the following steps to use WorldSecure Client 3.0 to encrypt an individual outgoing message with Eudora Pro 4.1:
|
| |
1 |
Open Eudora Pro. |
| |
2 |
Press Ctrl + N to begin a new message. |
| |
3 |
Click the S/MIME Encrypt and Sign button (the button to the left of the Send button). The Message Security Properties dialog box appears. |
| |
4 |
Check the "Encrypt message and attachments" check box and the "Digitally sign message and attachments" check box. |
| |
5 |
Click OK to close the Message Security Properties dialog box. |
| |
6 |
Enter the Passphrase for your certificate, then click OK.
The message is now sent and encrypted with your digital certificate. When the recipient receives the message, the S/MIME.p7m attachment appears in the body of the message. |
|
Back to Top |
Automatically Encrypting all Outgoing Messages
|
Outlook 2000 & Outlook 98 - Complete the following steps to encrypt all outgoing messages automatically in Outlook 2000 &Outlook 98:
|
| |
1 |
Open Outlook 2000 or Outlook 98. |
| |
2 |
Select Tools-->Options. The Options dialog box appears. |
| |
3 |
Click the Security tab. |
| |
4 |
Check the "Encrypt contents and attachments for outgoing messages" check box, then Click OK. Now all outgoing messages will be encrypted automatically. |
|
Netscape Communicator - Complete the following steps to encrypt all outgoing messages automatically in Netscape Communicator:
|
| |
1 |
Open Netscape Communicator. |
| |
2 |
Click the Security button on the Navigation Toolbar. The Security Info screen appears |
| |
3 |
Click the Messenger hyperlink. |
| |
4 |
Check the "Encrypt mail messages, when it is possible" check box. |
| |
5 |
Click OK. |
|
Now all outgoing messages to correspondents for whom you have a digital signature will be encrypted automatically.
|
Eudora Pro 4.1 - Complete the following steps to use WorldSecure Client 3.0 to encrypt all outgoing messages automatically with Eudora Pro 4.1:
|
| |
1 |
Open Eudora Pro. |
| |
2 |
Select Special--Message Security Settings. The Installed Message Plugins dialog box appears. |
| |
3 |
Select WorldSecure Client, then click the Settings button. The S/MIME Configuration - Current User dialog box appears. |
| |
4 |
Click the Security Settings button. The Security Settings - Current User dialog box appears. |
| |
5 |
Click the S/MIME Options tab. |
| |
6 |
Now all your outgoing messages will be encrypted automatically |
|
Back to Top |
