Configuring Outlook for secure e-mail

Infineon Security Platform

Infineon Security Platform Solution

Configure Secure e-mail

Make sure that you have already installed Windows Mail/Outlook Express/Outlook and have already configured it to send and receive e-mail through your e-mail server. Additionally, the presence of at least one digital certificate is required before you can proceed with the following instructions.

Note: If you do not yet have a certificate that can be used for secure e-mail, please obtain a certificate before you continue the configuration steps described below.

Windows Mail/Outlook Express

  1. Start Windows Mail/Outlook Express.

  2. Click on Tools > Accounts > Mail tab. Select your e-mail account, and click on the Properties button. Click on the Security tab to display security-related properties for your e-mail account.

  3. In the Signing Certificate area, click on Select. The Select Default Account Digital ID dialog box appears.

  4. Select the Infineon Security Platform certificate you would like to use. Note that Windows Mail/Outlook Express recognizes only those certificates that include your e-mail address in the certificate's Subject field.

  5. Click on the OK button to close the Select Default Account Digital ID dialog box. 

  6. Click on the OK button to close the Properties dialog box for your e-mail account. 

  7. Click on Close to close the Internet Accounts dialog box. 

  8. In the Tools menu, click on Options. Then click on the Security tab.

  • To sign all your outgoing e-mail, select the Digitally sign all outgoing messages option.
    Refer to the section on sending digitally signed messages for instructions on how to add digital signatures to individual messages. 
  • To encrypt all your outgoing e-mail, select the Encrypt contents and attachments for all outgoing messages option. Refer to the section on sending encrypted messages for instructions on how to encrypt individual messages.
  1. Click on the Advanced... button. The Advanced Security Settings dialog box appears.

  2. Confirm that the Always Encrypt to myself when sending encrypted mail option is selected in the Encrypted messages section. Selecting this option ensures that you are able to decrypt the encrypted messages you send if you store them.

  3. Confirm that the following options are selected in the Digitally Signed Messages section:

  • Include my Digital ID when sending signed messages.

  • Add senders' certificates to my address book.

Revocation is the process of undoing the digitally signed statement contained within a digital certificate. To enable certificate revocation (certificate validity) checking when online, select the Only when online option in the Revocation Checking section. Revocation checking is not enabled by default. When revocation checking is enabled and a digitally signed message is received, Windows Mail/Outlook Express attempts to verify that none of the certificates that validate the public key used to sign the message have been revoked. 

  1. Click on OK to close the Advanced Security Settings dialog box. 

  2. Click on Apply, and then click OK to close the Security Options property page.

 

Outlook 2007

  1. Start Microsoft Outlook 2007. Click on Tools > Trust Center... to open the Trust Center pane.

  2. Select E-mail Security in the left side of the Trust Center pane.

  3. Click Settings ... in the E-mail Security section.

  4. The Change Security Settings dialog appears. Select your Infineon Security Platform certificate for signing and encrypting your e-mail. Outlook 2007 displays your certificates, determines which ones are valid for e-mail encryption and e-mail signing, and chooses a certificate for each item. If the certificates that Outlook 2007 has pre-selected are not the ones you want to use with Outlook 2007, you can change the default selections:

    1. Click on the Choose... button in the Signing Certificate section to select the certificate you want to use for signing your e-mails. The Select Certificate dialog comes up. Click on View Certificate in the Select Certificate dialog to view the details of the selected certificate.
    2. Click on the Choose... button in the Encryption Certificate section to select the Security Platform certificate you want to use for encrypting your e-mails. The Select Certificate dialog is displayed. Click on View Certificate in the Select Certificate dialog to view the details of the selected certificate.
  1. Close the Select Certificate dialog by clicking on the OK button.

  2. Close the Change Security Settings dialog by clicking on the OK button.

  3. Select the option Add digital signature to outgoing messages in the Options pane dialog, if you want to sign all outgoing e-mail messages. Refer to sending digitally signed messages for instructions on how to add digital signatures to individual messages.

  4. Select the option Encrypt contents and attachments for outgoing messages in the Options pane dialog, if you want to encrypt all outgoing e-mail messages. Refer to sending encrypted messages for instructions on how to encrypt individual messages.

  5. Click OK to close the Trust Center pane.

 

Outlook 2003

  1. Start Microsoft Outlook 2003. Click on Tools > Options > Security tab. The Options pane dialog appears.

  2. Select the security settings name in Default Setting in the Encrypted e-mail section ('TPMTest', for example).

  3. Click on the Settings ... button in the Encrypted e-mail section.

  4. The Change Security Settings dialog appears. Select your Infineon Security Platform certificate for signing and encrypting your e-mail:

    1. Click on the Choose button in the Signing Certificate section to select the certificate you will use for signing your e-mail. The Select Certificate dialog comes up. Click on View Certificate in the Select Certificate dialog to view the details of the selected certificate.
    2. Click on the Choose button in the Encryption Certificate section to select the Security Platform certificate you will use for encrypting your e-mail. The Select Certificate dialog comes up. Click on View Certificate in the Select Certificate dialog to view the details of the selected certificate.
  1. Close the Select Certificate dialog by clicking on the OK button.

  2. Close the Change Security Settings dialog by clicking on the OK button.

  3. Select the option Add digital signature to outgoing messages in the Options pane dialog if you want to sign all outgoing e-mail messages. Refer to sending digitally signed messages for instructions on how to add digital signatures to individual messages.

  4. Select the option Encrypt contents and attachments for outgoing messages in the Options pane dialog, if you want to encrypt all outgoing e-mail messages. Refer to sending encrypted messages for instructions on how to encrypt individual messages.

  5. Click on the Apply button and click on the OK button to close the Option pane dialog.

 

Outlook XP

  1. Start Microsoft Outlook XP. Click on Tools > Options > Security tab. The Options pane dialog appears.

  2. Select the security settings name in Default Setting in the Secure e-mail section ('TPMTest', for example).

  3. Click on the Settings ... button in the Secure e-mail section.

  4. The Change Security Settings dialog appears. Select your Infineon Security Platform certificate for signing and encrypting your e-mail. Outlook XP views your certificates, determines which ones are valid for e-mail encryption and e-mail signing, and chooses a certificate for each item. If the certificates that Outlook XP has pre-selected are not the ones you want to use with Outlook XP, you can change the default selections:

    1. Click on the Choose button in the Signing Certificate section to select the certificate you will use for signing your e-mail. The Select Certificate dialog comes up. Click on View Certificate in the Select Certificate dialog to view the details of the selected certificate.
    2. Click on the Choose button in the Encryption Certificate section to select the Security Platform certificate you will use for encrypting your e-mail. The Select Certificate dialog comes up. Click on View Certificate in the Select Certificate dialog to view the details of the selected certificate.
  1. Close the Select Certificate dialog by clicking on the OK button.

  2. Close the Change Security Settings dialog by clicking on the OK button.

  3. Select the option Add digital signature to outgoing messages in the Options pane dialog if you want to sign all outgoing e-mail messages. Refer to sending digitally signed messages for instructions on how to add digital signatures to individual messages.

  4. Select the option Encrypt contents and attachments for outgoing messages in the Options pane dialog, if you want to encrypt all outgoing e-mail messages. Refer to sending encrypted messages for instructions on how to encrypt individual messages.

  5. Click on the Apply button and click on the OK button to close the Option pane dialog.

 

Outlook 2000

  1. Start Microsoft Outlook 2000.

  2. Click on Tools > Options > Security tab. The Options pane dialog appears.

  3. Click on the Setup Secure E-Mail ... button in the Secure e-mail section. 

  4. The Change Security Settings dialog-box is displayed. Select your Infineon Security Platform certificate for signing and encrypting your e-mail. Outlook 2000 views your certificates, determines which ones are valid for e-mail encryption and e-mail signing, and chooses a certificate for each item. If the certificates, which Outlook 2000 has pre-selected, are not the ones you want to use with Outlook 2000, you can change the default selections:

  1. Click on the Choose button in the Signing Certificate section to select your certificate as the one you will use to sign your e-mail. 

  2. Click on the Choose button in the Encryption Certificate section to select a certificate for e-mail encryption.

  1. Click on the OK button to close the Change Security Settings dialog box. Return to the Options dialog box. If you want to sign all e-mail messages that you want to send, click the Add digital signature to outgoing messages option. Refer to the section on sending digitally signed messages for instructions on how to add digital signatures to individual messages. If you want to encrypt all the e-mail messages you send, select the Encrypt contents and attachments for outgoing messages option. Refer to the section on sending encrypted messages for instructions on how to encrypt individual messages.

  2. Click on Apply, and then click on OK to close the Options dialog box. 

  3. Click on Services in the Tools menu, and then click on the Addressing tab. 

  4. Under Show this address list first, select Contacts from the drop-down list. 

  5. Under the When sending mail, move Contacts to the top of the search order and Global Address List to the bottom. Click on Apply, and then click on OK.

       


©Infineon Technologies AG