Issue:
Is it possible to set up email certificates to sign/encrypt email from a shared mailbox (shared mailbox is a different domain than the primary (of course registered in the tenant- is it still able to do)? If so how- is there a resource you can point out?
Communication:
- Yes, it should be able to as well as long as the DNS records for that domain is Office 365 / Exchange.
Would there be a need to get a certificate installed for that shared mailbox's email address, or can it use the cert for the primary email address?
Do you have any instructions/links on this I can forward along to the end user?
There is no certificate needed to encrypt emails.
Here is an article to setup the new Office 365 Message Encryption: https://docs.microsoft.com/en-us/microsoft-365/compliance/set-up-new-message-encryption-capabilities
You should be able to have an encrypt button when composing an email.
What do you mean by signing? Can you provide a reference for it?
The sign button is for S/MIME which is a certificate-based encryption solution that allows you to both encrypt and digitally sign a message. If you want to have an S/MIME certificate, you can acquire from a third-party certificate provider.
This article may help:
https://docs.microsoft.com/en-us/microsoft-365/compliance/email-encryption
if I receive a cert, that it can and will work for a Shared mailbox (sending/receiving signed and encrypted emails)?
I also wanted to know if a signed/encrypted email can be sent TO a distribution list?
Yes, S/MIME encryption can work with shared mailboxes if you have a certificate for it. Here is a supporting article: https://social.technet.microsoft.com/Forums/lync/en-US/225bd299-2d1d-4878-b172-cbab2cf29641/email-encryption-with-shared-mailboxes?forum=exchangesvrsecuremessaging
Yes, signed and encrypted emails can be sent to a distribution list.
In order for an encrypted email to be sent, doesn’t there need to be communications of sent/received sign’d emails first? – if so, how is the DL able to send, unless we need to set up delegates for it to send from? Well in order to send a signed email, doesn’t the first person need to send a signed email, and then recipient needs to send a signed email back before the encryption can start? That’s been the way we’ve been doing it here. Trying to send an encrypted email on the first try doesn’t work.
We ultimately want to send an encrypted email to a DL. … but in order to achieve this based on the above, a signed email must be sent from the dl address.
I was able to get signe/encrypted emails sent to a shared mailbox --- - and anyone connected to it didn’t need to do anything. . .
Comments
0 comments
Please sign in to leave a comment.