I am investigating trying to setup or configure S/MIME at an organizational level. Currently users can exchange S/MIME messages as long the recipient is in their personal address book. This all works as expected.
However, I would like to try to setup so that anytime someone wants to send an encrypted message to @company.com they do not have to go through the whole mess of sending a signed message back and forth first.
I currently have the other company’s CA root added as a certifier in the Domino directory as well as have an internet cross-certificate between the organization and their CA. Our users still cannot send encrypted messages unless the recipient is in the directory.
Does anyone have any hints or tips on how to configure S/MIME exchange at an organizational level?
Thanks
p.s. The other company DOES NOT use Domino so we cannot cross certify through native notes…which would be a heck of a lot easier.