Re: Encrypted emails

[streck () papafloh de (Florian Streck)]

Hi Jair,

since you speak of an CA, I assume you talk about ssl-certificates.
Your Problem is the availability of the Certificates. The Users of your
active directory are able to fetch the pub-key of the recipient from the
directoryserver and then send a mail encrypted with that key.
If the 'outside'-Users also have certificates _and_ you have access to
the public keys you can send them encrypted mails.
Same applies to the 'outside'-Users. So you have to give them
read-access to the certificates on the directoryserver or find another
way to distribute the public keys. AFAIK is the default behaviour of
many MUAs to send the public key with signed mails. So this is another
possible way for the key distribution.
And, for the people to verify the validity of your certificates you have
to publish the pubkey of your CA for them to import it in their MUAs.

Hope this helps.
Florian

On Tue, Apr 03, 2007 at 05:45:41PM -0400, Jair wrote:
> Hi There,
>
> I have a CA in my windows 2000 active directory domain and my users are able
> to send encrypted emails just to internal users in the organization( users
> in the same active directory domain).
> Are you aware of any way to send encrypted messages to users in a different
> organization ( another email domain) ?
>
> Thanks a lot in advance for your answer. 

-- 
pray, n:
        To ask that the laws of the universe be annulled on behalf
        of a single petitioner confessedly unworthy.
                -- Ambrose Bierce

Attachment: signature.asc
Description: Digital signature