This article discusses how to configure the Exchange Server 2003 version of Microsoft Outlook Web Access (OWA) to permit users to digitally sign and encrypt e-mail messages by using the new OWA Secure/Multipurpose Internet Mail Extension (S/MIME) control. The S/MIME control works in conjunction with public key infrastructure (PKI) technology to provide signing and encryption functionality.
Note This article assumes a solid understanding of cryptography and PKI technology. For more information about cryptography and Windows PKI, visit the following Microsoft Web site:
How to Install Windows Server 2003 Certification Authority
The standard User certificate template that is included with Windows Server 2003 Certificate Services supports message signing and message encryption for the OWA S/MIME control. If you want to require separate certificates for signing and encryption, you must create two new templates: one template for signing and one template for encryption.
Note After the certification authority (CA) component is installed, certificates are issued automatically upon request unless the certificate template is modified to require an administrator to grant the certificate. Therefore, user certificates are issued without an administrator's approval.