• No results found

Using etoken for Securing s Using Outlook and Outlook Express

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Using etoken for Securing s Using Outlook and Outlook Express"

Copied!
25
0
0

Loading.... (view fulltext now)

Download now ( 25 Page )

Full text

(1)

Using eToken for Securing E-mails

Using Outlook and Outlook Express

Lesson 15

eToken Certification Course

April 2004

Securing Email Using Certificates

• Unprotected emails can be easily read and/or altered

• Digital signatures:

– Allow verification of the sender’s identity.

– Provide proof the the message has not changed after being signed.

• Encryption protects the content of messages - only the authorized recipient can decrypt the message.

______________________________________ eToken Certification Course Manual 2004

______________________________________ 1

(2)

Solution Overview

Using eToken with Microsoft Outlook

: – Request and download a digital certificate – Digitally sign an email message

– Encrypt and decrypt an email message

System Requirements

• Windows 95/98/ME/NT/2000/XP

• Internet Explorer 5.0 and above

• Netscape 4.6 and above

• eToken R2 or PRO

• Install eToken PKI Client

(3)

Downloading a Certificate from

Entrust Web Site

• A demo certificate can be enrolled from a public site:

• Launch Internet Explorer. • Go to http://www.entrust.com/freecerts

Under Web Certificates, click on SSL Web Certificates

Select Web Browser Certificate

Downloading a Certificate from

Entrust Web Site

On the enrollment page insert the required information. Read the license

agreement, if accepted, click Proceed to step 2

______________________________________ eToken Certification Course Manual 2004

______________________________________ 3

(4)

Downloading a Certificate from

Entrust Web Site

• Review the DN information and click Proceed to

Step 3

Downloading a Certificate from

Entrust Web Site

• In the CSP section, choose the eToken Base

Cryptographic Provider

(5)

Downloading a Certificate from

Entrust Web Site

Note:

For installing the digital certificate on the eToken, make sure you do the following:

Select eToken Base Cryptographic Provider. • Insert the eToken to the computer.

• Enter the eToken password when prompt during the download of the Digital ID.

If you want to download the Digital ID to the computer’s hard drive, Select the default Microsoft Base

Cryptographic Provider.

The eToken logon dialog box will appear. Insert the

eToken password in order to generate the RSA key pair on the eToken.

Downloading a Certificate from

Entrust Web Site

______________________________________ eToken Certification Course Manual 2004

______________________________________ 5

(6)

Downloading a Certificate from

Entrust Web Site

Congratulations the certificate is stored on your eToken!

Downloading a Certificate from

Entrust Web Site

• Open the eToken Properties tool

• Select Advanced, and view the Certificates & Keys tab. • All the certificates stored on the eToken are displayed:

(7)

Using eToken to Sign Emails

with Microsoft Outlook

Signing an Email Message

1. Open Microsoft Outlook 2. Click on New

3. Scroll down to New Mail Message

______________________________________ eToken Certification Course Manual 2004

______________________________________ 7

(8)

Signing an Email Message

4. Click the [Options…]

6. Click on Security Settings… 5. The following window appears:

Signing an Email Message

7. Check Add digital signature to this message

(9)

Signing an Email Message

9. To choose the signing certificate click on Choose…

Signing an Email Message

10. Select the certificate used for signing emails. 11. Click OK.

______________________________________ eToken Certification Course Manual 2004

______________________________________ 9

(10)

The eToken logon dialog box appears. The sender must logon to the eToken in order to sign the message using his private key.

Signing an Email Message

Signing an Email Message

12.Click Send. The signed email will be sent along with the signature and the sender’s public key.

The recipient can then add the sender to his contact list while saving his public key. The public key can be used for replying encrypted messages.

(11)

Using eToken to Sign and

Encrypt Email Messages

Signing and Encrypting Emails

1. Open Outlook Express 2. Click on New

3. Scroll down to Mail Message

______________________________________ eToken Certification Course Manual 2004

______________________________________ 11

(12)

Signing and Encrypting Emails

4. Click the Options… button. 5. Click on Security Settings…

6. Click on Security Settings…

7. Check Encrypt message contents and attachments.

8. Click on Change Settings…

(13)

9. click on Choose…next to Encryption Certificate

Signing and Encrypting Emails

10. Select the certificate for encrypting emails. 11. Click OK.

Encrypting Emails

______________________________________ eToken Certification Course Manual 2004

______________________________________ 13

(14)

12.The message was encrypted using the recipient's public key which was previously received and stored as part of his contact details. 13.Click Send – Only the recipient can decrypt this message by using

his corresponding private key.

Encrypting Emails

The recipient uses his private key stored on his eToken to decrypt the message.

Encrypting Emails

The recipient uses the sender’s public key to verify the signature.

(15)

Using eToken for Secure Emails

in Microsoft Outlook Express

Selecting the Certificate in Outlook

Express

• Before you can use the certificate to secure your email in Outlook Express, you must select it, as described below.

To select the certificate in Outlook Express:

1. In Outlook Express, select Tools, then Accounts.

2. Double-click on the account associated with the certificate, and click the Security tab

.

3. The Security Options window is

displayed, as shown:

______________________________________ eToken Certification Course Manual 2004

______________________________________ 15

(16)

Selecting the Certificate in Outlook

Express

4. In the Signing Certificate area, click Select. The available 5. certificates are displayed, as shown in the following example:

6. Select the certificate and click OK. The certificate is displayed for the Signing Certificate.

7. Repeat steps 4 to 5 for Encrypting preferences.

8. Click OK and then Close. The selected certificate will be used for signing, encrypting and decrypting your email.

(17)

Signing an Email Message

The sender logs on to the eToken to sign the message using his private key

A Digitally Signed Message

When a digitally signed mail is received, the indication for the signature is marked as described below:

______________________________________ eToken Certification Course Manual 2004

______________________________________ 17

(18)

Verifying the Signature

When the signing icon is double clicked, it is possible to verify the sender’s certificate.

Saving the Sender’s Public Key for

Encrypting Messages

It is essential to save the sender’s public key, so encryption can be enabled. Saving the public key is done by adding the sender to the address book.

(19)

Saving the Sender’s Certificate

The sender’s certificate is saved once the sender is added to the address book.

The receiver uses his private key on his eToken to decrypt the message

Once you try to open an encrypted message you are requested to input the eToken password:

Decrypting an Email Message

______________________________________ eToken Certification Course Manual 2004

______________________________________ 19

(20)

The Decrypted Mail Message

When an encrypted mail is received, the indication for the encryption is marked as described below:

Outlook Web Access

Using SSL v3 and eToken for Web

Access to Exchange Server 2000

(21)

Using SSL v3 and eToken for Web

Access to Exchange Server 2000

Microsoft Outlook Web Access (OWA) for Microsoft Exchange Server provides users access to e-mail, personal calendar and group applications on Microsoft Exchange Server through a Web browser.

System Requirements:

• Windows 2000 Server with Service Pack 1 or higher • Microsoft Exchange Server 2000

• Active Directory

• Internet Explorer 5.0 and above • Netscape 4.6 and above • eToken R2 or PRO • Install eToken PKI Client

• Enroll personal certificates for the users

1. Configuring SSL on the web sever. 2. Installing NNTP services.

3. Installing Microsoft Exchange Server 2000 4. Creating Exchange inbox for the domain users 5. SSL Authentication to the Exchange mailbox

Outlook Web Access – Basic Steps

______________________________________ eToken Certification Course Manual 2004

______________________________________ 21

(22)

Creating Inbox for New Users in

the Domain

From exchange server create a mailbox for the user.

How to Enable Windows Directory

Service Mapper

• Open Internet Services Manager

Right click on the Server name. Select propertiesSelect Edit in Master Properties field

(23)

How to Enable Windows Directory

Service Mapper

Click Directory Security Tab. Select Enable the Windows directory service mapper in Secure communications field.

Client Certificate Mapping

• In the Internet Information Services open the Exchange web site properties

Select the Directory Security tab and click Edit in Secure Communication field

______________________________________ eToken Certification Course Manual 2004

______________________________________ 23

(24)

SSL Configuration and Client

Certificate Mapping

• Check Require secure channel (SSL) • Select Require client certificates

• Check Enable client certificate mapping

SSL Authentication to Microsoft

Exchange Server 2000 – Client Side

1. Open Internet Explorer. 2. Insert the eToken

3. Enter the URL: https://server name/exchange 4. Select the user’s certificate. Click Ok.

(25)

SSL Authentication to Microsoft

Exchange Server 2000

5. Enter the eToken password.

Access to Inbox is Granted

______________________________________ eToken Certification Course Manual 2004

______________________________________ 25

References

Download now ( PDF - 25 Page - 0.93 MB )

Related documents

Ciphermail S/MIME Setup Guide

The ex- ternal recipients can use the certificate with any S/MIME capable email client like Outlook, Outlook express, Lotus Notes and start receiving and sending S/MIME encrypted

Registry Repair, Clean Up & File Fix for Windows - Review

Import outlook express contacts thunderbird, outlook 2010 archive not found, open archive email in outlook 2010, outlook 2010 archive specific email, outlook express email

Additional information >>> HERE

save email as html, microsoft outlook 2010 corrupt pst file, change email account settings outlook express, outlook 2003 archive emails missing, microsoft outlook express for windows

Neutrality-Based Symmetric Cryptanalysis

To explain how neutrality is used in cryptanalysis of block ciphers, consider a block cipher C = E K (P ) which maps the plaintext P into the ciphertext C using the secret..

How To Restore Outlook Express From A Backup To A Pst On Windows (Windows 7) To A New Outlook Express Archive Restore On Windows 7.1 (Windows 8) (Windows 2007) (Powerbook) ( Windows

outlook express into windows live mail 2012, serial para registry fix and clean pro, outlook 2010 pst file repair, transfer email and contacts from outlook express to outlook

Virtual Office Outlook Integration User Guide

Virtual Office Outlook Integration allows you to place and receive calls using your Microsoft Outlook email client.. Just click your mouse to place calls right from your

Internet Phone Service. Virtual Office. Outlook Integration User Guide. Version TRY.VOIP

Virtual Office Outlook Integration allows subscribers to place and receive calls using their Microsoft Outlook email client.. Users have the ability to select a contact and then

KASPERSKY LAB. Kaspersky Internet Security 7.0 USER GUIDE

Special plug-ins are available for the most common mail clients, such as Microsoft Office Outlook, Microsoft Outlook Express (Windows Mail), and The Bat!. These place