If you are using Office 365 and all users Outlook is connected to their O365 account, when you add their certificate in the email settings in Outlook, clicking the "Publish to GAL" button adds it to their account in Office 365. Is there a way to manually (using a script) to push public keys to O365? If that is not the case, is there a way to specify the search path for the cert retrieval so we can point Outlook to the local CA? I'd like to do that at some point, but we don't have the departmental bandwidth to set it up right now with all the potential for breakage.
It looks like the only way to push certs to Office 365 is using AD Sync.
This got me to thinking, and I'm hoping that someone here can help. When someone, using Outlook 2016 for Mac tries to send an email and they do not have a stored cert for the recipient a message pops up asking if they want to search Active Directory. This is inconvenient, and very difficult to manage particularly when we have to invalidate a cert or one expires. Everyone adds the certificate to their client, and life goes on. We utilize internally signed certificates for S/MIME email encryption here, and when I arrived (and continuing to this day) the means for people to get set up for them to send a signed email out to the entire company, and the entire company replies back with a signed email.
0 kommentar(er)
