Dear all,
I would like to know if it's possible to configure Djigzo en encrypt
emails without signing it.
We would need that because using "Company gateway" certificate to sign,
the sender email adress is not the same as the email adress inside the
"Company gateway" certificate, and it seems this create some "warning" on
the recipient side SMIME product.
I look into the web interface and the Administration Guide, and I don't
see any option to encrypt whithout signing.
the option "Only Sign when encrypt" say : "messages will be signed only
when encrypted , otherwise all messages will be signed."
Does anyone know if it's possible to not sign at all ?
Thank's
···
--
Yannick
Zitat von Yannick Grange <ygrange(a)technip.com>:
Dear all,
I would like to know if it's possible to configure Djigzo en encrypt
emails without signing it.
We would need that because using "Company gateway" certificate to sign,
the sender email adress is not the same as the email adress inside the
"Company gateway" certificate, and it seems this create some "warning" on
the recipient side SMIME product.
This is the downside of Gateway certificates, yes...
I look into the web interface and the Administration Guide, and I don't
see any option to encrypt whithout signing.
the option "Only Sign when encrypt" say : "messages will be signed only
when encrypted , otherwise all messages will be signed."
This means all messages will be signed if a matching certificate/key
is available. So in your case Djigzo should not sign the mails as long
as you don't have a matching sender mailaddress which you don't have
with your gateway certificate. If it does sign with the gateway
certificate/key you most likely have assigned it as "signing
certificate" at domain level, no?
Regards
Andreas
I think Andreas is right in that probably a signing certificate has been
selected for the sender domain (i.e., for the domain technip.com). You
can check whether a signing certificate is selected for the sender
domain by opening the properties page for the domain, then click on
"signing certificate". If a certificate is selected you can remove the
selection by clicking "auto select certificate". "auto select
certificate" for a domain will result in no certificate because there is
no domain certificate available.
Kind regards,
Martijn Brinkers
···
On 05/16/2012 11:49 AM, lst_hoe02(a)kwsoft.de wrote:
Zitat von Yannick Grange <ygrange(a)technip.com>:
Dear all,
I would like to know if it's possible to configure Djigzo en encrypt
emails without signing it.
We would need that because using "Company gateway" certificate to sign,
the sender email adress is not the same as the email adress inside the
"Company gateway" certificate, and it seems this create some "warning" on
the recipient side SMIME product.
This is the downside of Gateway certificates, yes...
I look into the web interface and the Administration Guide, and I don't
see any option to encrypt whithout signing.
the option "Only Sign when encrypt" say : "messages will be signed only
when encrypted , otherwise all messages will be signed."
This means all messages will be signed if a matching certificate/key is
available. So in your case Djigzo should not sign the mails as long as
you don't have a matching sender mailaddress which you don't have with
your gateway certificate. If it does sign with the gateway
certificate/key you most likely have assigned it as "signing
certificate" at domain level, no?
--
DJIGZO email encryption
Dear all,
Thank you very much for your 2 very fast answers.
Of course the Martijn's solution is working perfectly 
Sorry to have missed this Domain "signing certificate" options in web
interface.
Thank you
···
--
Yannick
From: Martijn Brinkers <martijn(a)djigzo.com>
To: users(a)lists.djigzo.com
Date: 16/05/2012 12:42
Subject: Re: Is it possible to encrypt without
signing ?
Sent by: users-bounces(a)lists.djigzo.com
On 05/16/2012 11:49 AM, lst_hoe02(a)kwsoft.de wrote:
Zitat von Yannick Grange <ygrange(a)technip.com>:
Dear all,
I would like to know if it's possible to configure Djigzo en encrypt
emails without signing it.
We would need that because using "Company gateway" certificate to sign,
the sender email adress is not the same as the email adress inside the
"Company gateway" certificate, and it seems this create some "warning"
on
the recipient side SMIME product.
This is the downside of Gateway certificates, yes...
I look into the web interface and the Administration Guide, and I don't
see any option to encrypt whithout signing.
the option "Only Sign when encrypt" say : "messages will be signed only
when encrypted , otherwise all messages will be signed."
This means all messages will be signed if a matching certificate/key is
available. So in your case Djigzo should not sign the mails as long as
you don't have a matching sender mailaddress which you don't have with
your gateway certificate. If it does sign with the gateway
certificate/key you most likely have assigned it as "signing
certificate" at domain level, no?
I think Andreas is right in that probably a signing certificate has been
selected for the sender domain (i.e., for the domain technip.com). You
can check whether a signing certificate is selected for the sender
domain by opening the properties page for the domain, then click on
"signing certificate". If a certificate is selected you can remove the
selection by clicking "auto select certificate". "auto select
certificate" for a domain will result in no certificate because there is
no domain certificate available.
Kind regards,
Martijn Brinkers
--
DJIGZO email encryption
_______________________________________________
Users mailing list
Users(a)lists.djigzo.com
http://lists.djigzo.com/lists/listinfo/users