Title: UNCLASSIFIED
1UNCLASSIFIED
UNCLASSIFIED
Public Key Infrastructure (PKI)
Configuring Outlook
UNCLASSIFIED
UNCLASSIFIED
2Configuring Outlook Settings
- Open MS Outlook
- Select Tools
- Select Options
3Configuring Outlook Settings
4Configuring Outlook Settings
- Select Security tab
- Click Settings
5Configuring Outlook Settings
6Configuring Outlook Settings
7Configuring Outlook Settings
- Enter desired Security Settings Name
- Check all boxes listed
- Default Security Setting for this Secure Message
Format - Default Security Setting for all secure messages
check boxes - Send these certificates with signed messages
8Configuring Outlook Settings
9Digital Signature Certificate
- Select Choose for appropriate E-Mail Signature
Certificate
10Digital Signature Certificate
11Digital Signature Certificate
- Select E-Mail Signature Certificate
- Expand the Issued By column to see complete
name - Click OK
12Digital Signature Certificate
13Digital Signature Certificate
- Make sure the Hash Algorithm is SHA1
14Digital Signature Certificate
15Encryption Certificate
- Click Choose for E-Mail Encryption Certificate
16Encryption Certificate
17Encryption Certificate
- Select appropriate E-Mail Encryption Certificate
Expand the Issued By column to see complete
name - Click OK
18Encryption Certificate
19Encryption Certificate
- Make sure the Encryption Algorthim is 3DES
- Click OK
20Encryption Certificate
21Configuring Outlook Settings
- Window will close and go back to the Options
window - In the Secure Email section check the following
- Add digital signature to outgoing messages
- Check Send clear text message when sending signed
messages - Select Apply
- Select OK
22Configuring Outlook Settings
23Set Outlook Contacts as Default
- To send and receive DoD PKI messages, Contacts
must be set as the first location referenced in
address book. - Select Tools
- Select Services
24Set Outlook Contacts as Default
25Set Outlook Contacts as Default
- In Services windows opens click on the Addressing
Tab - Scroll to the bottom in the Show this address
list first drop down box of the list and select
Contacts - Keep setting for Keep personal addresses in
Contacts setting. - Click Apply
26Set Outlook Contacts as Default
27Add Digital Signature Button
- Open a new mail message
- Select Tools
- Choose Customize
28Add Digital Signature Button
29Add Digital Signature Button
- Customize window will open
- Click on the Commands tab
30Add Digital Signature Button
- Scroll down the Categories until you find
Standard - Click once Standard to highlight it
31Add Digital Signature Button
32Add Digital Signature Button
- Move the scroll bar to the bottom on the right
hand Commands column - Drag and drop Digitally Sign Message icon to the
Standard toolbar - Hold your cursor over the wording and click your
left mouse button and hold it down - The icon appears is a small box under the cursor
with a plus sign on the bottom
33Add Digital Signature Button
34Add Digital Signature Button
- While holding the left mouse button down drag the
Digitally Sign Message icon to your Standard
toolbar - You will see a line where the icon will be placed
- Move the icon to a desired position and release
the left mouse button - The icon will then stay in place on your toolbar
35Add Digital Signature Button
36Add Encryption Button
- Repeat this process with the Encrypt Message
Contents icon
37Add Encryption Button
- Drop the Encrypt icon next to the Digitally Sign
Message icon
38Add Encryption Button
- When finished both icons should be in color on
your standard toolbar - The icon with the red medallion is used to
digitally sign email messages
39Add Encryption Button
- The icon with the blue medallion is used to
encrypt email messages
40Send Digitally Signed Encrypted Email Messages
- Click New Mail Message button in MS Outlook
- Click TO
41Send Digitally Signed Encrypted Email Messages
- Select the desired individual from the Contacts
Address Book - Click TO
- When finished click OK
42Send Digitally Signed Encrypted Email Messages
43Send Digitally Signed Encrypted Email Messages
- Check the appropriate icon blocks to sign and/or
encrypt - Complete message
- Click Send
44Send Digitally Signed Encrypted Email Messages
45Send Digitally Signed Encrypted Email Messages
- If digitally signing the message enter password
for the PKI certificate - If only encrypting email message there is no need
to enter your password
46Send Digitally Signed Encrypted Email Messages
47Send Digitally Signed Encrypted Email Messages