UniToken Integration Outlook 2003

From SecuTech Wiki
Jump to: navigation, search


Install the PKI package

This section explains how to install the PKI package that can be found inside the UniToken SDK. The End User package can be found inside the folder "Redist/Enduser/".

1 Right-click on the PKI package installation file and choose [Run as administrator].Execute the file with an account that has administrator rights on this computer. Bitlocker img01.jpg
2 Click on [Next] in the InstallShield Wizard welcome screen. Bitlocker img02.jpg
3 Input your User Name and Company Name and click on [Next]. Bitlocker img03.jpg
4 Select [Complete] and click on [Next]. Bitlocker img04.jpg
5 Click on [Install] to begin the installation of the PKI package. Bitlocker img05.jpg
6 Verify that the InstallShield Wizard completed successfully and click on [Finish]. Bitlocker img06.jpg

Request a VeriSign Certificate

1 Open your internet browser of your choice and navigate to the page https://digitalid.verisign.com/client/class1MS.htm With VeriSign, you have the option of either buying a digital certificate, or obtaining a free evaluation digital certificate usable for 60 days. Adobepdf img01.jpg
2 In the field "Cryptographic Service Provider Name", choose [UniToken PRO CSP v2.0]. Adobepdf img02.jpg
3 Click on [Accept] to request the certificate. Adobepdf img03.jpg
4 Type the corresponding User PIN for the UniToken PRO device and click [OK]. Adobepdf img04.jpg
5 An email containing a Digital ID PIN and explaining how to continue the request procedure will be sent to the email address specified earlier. Copy the Digital ID PIN from the email and navigate to the URL specified in the email, https://digitalid.verisign.com/enrollment/mspickup.htm. Adobepdf img05.jpg
6 Paste the Digital ID PIN copied from the email in the corresponding field and click on [Submit]. Adobepdf img06.jpg
7 Click on [INSTALL] to import the certificate inside your UniToken PRO. If UniToken Monitor is running, a "Certificate Imported Successfully" message will appear. The request procedure is complete. You can now use this certificate to protect documents, sign and encrypt emails and related applications. Adobepdf img07.jpg

Sign and Encrypt Emails

1 User 1 mailbox (receiver.secutech)In Microsoft Outlook 2003, below the main menu, select [New] to create a new message. Mail2003 img01.jpg
2 Below the main menu, in the tool bar click on [Options]. Mail2003 img02.jpg
3 On the [Message Options] page, click on [Security Settings] Mail2003 img03.jpg
4 On the [Security Properties] page, check [Add digital signature to this message] and click on [Change Settings] Mail2003 img04.jpg
5 Click on [Choose] to Select the certificate stored inside the UniToken and click on [OK] consecutively until you get back to [New Message] window. Mail2003 img05.jpg
6 In the new mail window, click on [Send] to send the signed mail. You will be asked for the UniToken password. Mail2003 img06.jpg
7 User 2 mailbox (helper.secutech) Go the mail account that you’ve just sent the signed mail to, and click on [Send/Recv]. Open the signed mail, right-click on the sender name and choose [Add to Outlook Contacts] Mail2003 img07.jpg
8 Click on [Save and Close] to save the information about User 1 (receiver.secutech) as well as his certificate. Mail2003 img08.jpg
9 Back to the main window of Microsoft 2003, select the signed email and click on [Reply]. Now that you have received that user’s digital signature, you can send encrypted mails to that user (The public key of that user is included in the signature) Mail2003 img09.jpg
10 Click on the [ ] icon on the top right of the windows and click on [Send] to send the encrypted message. If the signature and encryption icon doesn’t appear, you can configure message encryption from [Options…] [Security settings] [Encrypt message and attachment] Mail2003 img10.jpg

Open an encrypted mail

1 User 1 mailbox (receiver.secutech)Go back to User 1’s mailbox and check your mail. You should have received the encrypted mail from User 2. Double-click on it to open it.
Mail2003 img11.jpg
2 If your UniToken is inserted, you will be able to see the content of the mail. Note: If you’ve just inserted UniToken, you will be asked for the user password to decrypt the mail. Otherwise, there is no need to input the password once again Mail2003 img12.jpg
3 If UniToken is not inserted or if the certificate is incorrect, the message [Cannot Open this item. Your digital ID name cannot be found by the underlying system] Mail2003 img13.jpg

Glossary

Digital Signature: a mathematical scheme for demonstrating the authenticity of a digital message or document. A valid digital signature gives a recipient reason to believe that the message was created by a known sender, and that it was not altered in transit.

Public Key Infrastructure (PKI): a set of hardware, software, people, policies, and procedures needed to create, manage, distribute, use, store, and revoke digital certificates.

Microsoft Cryptography API, MS-CAPI: an application programming interface included with Microsoft Windows operating systems that provides services to enable developers to secure Windows-based applications using cryptography.

PKCS: refers to a group of public-key cryptography standards devised and published by RSA Security.