Secure Messaging with Microsoft Exchange Server 2000

The “Designing a Public Key Infrastructure” white paper is the definitive reference on the ins and outs of configuring PKI for your network. It’s available from http://www.microsoft.com/technet/prodtechnol/WindowsNetServer/Evaluate/CPP/Reskit/ADSec/Part2/RKDdsPki.asp.

The National Security Agency has published two useful references on configuring PKIs for Exchange. The Guide to Using DoD PKI Certificates in Outlook 2000 covers client-side certificate usage (see http://www.nsa.gov/snac/win2k/guides/w2k-15.pdf), and the Guide to the Secure Configuration and Administration of Microsoft Windows 2000 Certificate Services ( http://www.nsa.gov/snac/win2k/guides/w2k-12.pdf) covers the CA itself.

The “Windows 2000 Server and Key Management Server Interoperability” white paper can be accessed at http://www.microsoft.com/technet/security/prodtech/pubkey/default.asp, as can other excellent PKI guides and papers.

Chapter 24, “Security Sensitive Environments,” from the Microsoft Exchange 2000 Server Resource Kit (Microsoft Press, 2000).

Chapter 4, “Installing and Using Digital Certificates” from the book Microsoft Windows Security Inside Out for Windows XP and Windows 2000 by Bott and Siechert (Microsoft Press, 2002).