|
|
|
|
|
Before MOVEit Automation can be used to exchange S/MIME email, the certificates of both the sender and the recipient must be obtained and stored correctly.
Personal Certificate
The personal certificate is used to sign outgoing messages and decrypt incoming messages. Personal certificates can be obtained from most Certificate Authority companies, such as Thawte. The personal certificate contains both a private and public key, and is generally given out based on email address.
A personal certificate should be obtained in a PKCS12 format, which allows both the public and private keys to reside in the same password-protected file. This file will usually have an extension of either .pfx, or .p12.
The certificate should be stored in the Personal certificate store of the local user that MOVEit Automation is running under. To import the certificate, use the SSL Client Certificates menu option in MOVEit Automation Admin.
Other Certificates
Other certificates are used to encrypt outgoing messages to a specific user. Other certificates are simply the public-key half of the other party's personal certificate, and can obtained from the other party, usually by having the other party send a signed S/MIME message to the current user.
The public-key certificate should be obtained as an X.509 certificate, which may be encoded in a binary format (DER) or a text format (base-64). Both encoding formats are usually stored in a file with an extension of .cer. The certificate should then be stored in the Other People certificate store of the local user that MOVEit Automation is running under.
To import the certificate into Windows, use the SSL Client Certificates menu option in MOVEit Automation Admin.