Select the product you need help with
- Internet Explorer
- Windows Phone
- More products
Policy and user setting to force Outlook to use the default digital certificate
Article ID: 2734219 - View products that this article applies to.
Microsoft Office Outlook 2003 introduced the ForceDefaultProfile registry value. Outlook 2007 and Outlook 2010 also support this registry value. When you enable this setting, Outlook is forced to always use the default certificate for signing or encrypting. Additionally, you are prompted to select another digital certificate if there are any errors with the currently-selected certificate. For example, the certificate may be expired.
Important This article contains information about how to modify the registry. Make sure that you back up the registry before you modify it. Make sure that you know how to restore the registry if a problem occurs. For more information about how to back up, restore, and modify the registry, click the following article number to view the article in the Microsoft Knowledge Base:
322756When the ForceDefaultProfile registry value is set to 1, Outlook does not automatically select another available certificate. Instead, you are presented with the following prompt:
(http://support.microsoft.com/kb/322756/ )How to back up and restore the registry in Windows
If you click Change Security Settings, you can manually select a different certificate, if one is available in the Change Security Settings dialog.
Note If you set ForceDefaultProfile to 1 and do not have any valid certificates, the above prompt is displayed.
This behavior helps alert you when there is a problem with your certificate. Consider the following scenario.
By default, Outlook automatically switches to use the digital certificate that you created for personal use. Without a prompt, you may inadvertently use your personal certificate for signing and encrypting email messages.
To set the ForceDefaultProfile registry value, use the following steps:
Office 2010 Administrative Template files (ADM, ADMX/ADML) and Office Customization Tool download
2007 Office system (SP2) Administrative Template files (ADM, ADMX, ADML) and Office Customization Tool
Office 2003 Service Pack 3 Administrative Template (ADM), OPAs, and Explain Text Update
(http://go.microsoft.com/fwlink/?LinkId=151500)for other considerations.