"Your Digital ID cannot be found by an underlying security system"

[Maria]

Hi all,
I know there are lot of postings on this issue.But mine looks
peculiar.Our orgnaization has hundreds of users and recently we decided
to provide email encyption capability. I came to know that CACert.org
provides free digital certificates, so decided to try it myself. We
have Windows XP ans office 2003 deployed in our systems and its up to
date. I registered two emails in CACert.org and got digital
certificates. I imported them in Outlook 2003 and exchanged the public
keys successfully between those two email addresses(We have Exchange
server 2003 and its patch status is good). When my colleague sends an
encrypted mail from his email to my address I'm able to recieve it and
view it successfully in outlook.But the problem arise when i send the
encypted mail, he can't view it he gets the message "Your Digital Id
cannot be found by an underlying security system"

I tried all possible trobleshooting but nothing seems to be working,
1. I checked whether my digital id is corrupted or not. and even
got new digital id and repeated the processes but it didn't work
2. I ensured that my friend has the public key that is
corresponding to my digital cert
3. I checked key size and encyrion and signature algorithm all
matching with my friend's setting
4.I asked him to send an encypted mail to himself, that seems to be
working.The prblem happens when I send the mail to him
5.I read the Microsoft Knowledge base article and made sure that
all the conditions are satisfied

I would be thankful if someone helps to get me out of this problem

 

[Guest]

Hi Maria - I have posted a similar problem today and then came across your
message. Did you ever resolve? I am using Verisign digital id and Verisign
say the problem is within Outlook.

Del

 

[Brian Tillman]

Hi Maria - I have posted a similar problem today and then came across
your message. Did you ever resolve? I am using Verisign digital id
and Verisign say the problem is within Outlook.

When do you see the error? If when trying to send a message, like Maria,
then that's an indication that your recipient has not yet sent you a
digitally-signed message containing his public key or that you have not
entered it into your certificate storage. In order to encrypt a message to
someone, you must have his public key available first. It has nothing to do
with you having a certificate.

 

[Guest]

It appears when I try and look at sent digitally signed messages in my sent
box (or other folder) and when we receive messages I have sent to ourselves
when trying digitally signed tests. I am not encrypting the files (let's not
go there!) - just adding a signature although I also added the digitally
signed address of my husband (who has the cert) to outlook contacts as a
hoped for solution. When I look at his details in Outlook contacts the
certificate is showing there too. I sent a digitally signed message to
Verisign support and one of our clients and they both received OK and could
read them. We, as the senders were the only ones who could not. The problem
seems to be intermittent too. It seemed to be working OK yesterday but today
only worked OK a couple of times on my test mails. I have rebooted and
reinstalled the certificate to not avail.

 

[Guest]

I think I have cracked it! I run the addin "Attachments Processor" behind
Outlook which detaches attachments and posts them in a separate folder to
keep my Outlook file from getting enormous. I noticed my sent test emails had
an attachment paperclip on them which related to the certificate. I have
amended my Attachments Processor filters to only deal with certain types of
attachments and hey presto - it works! Thanks for your input and maybe this
will help anyone else with the same problem.