KeyTalk’s ongoing feature development: LDAP product and LDAP & AD support for S/MIME email address book
When it comes to email encryption, most companies choose S/MIME certificate based email encryption.
In order to use S/MIME based email encryption, you yourself must not only have a valid trusted certificate and key-pair, but you must also have the public key of the certificate of the recipient(s) you wish to send an encrypted email to.
But how do you obtain the most recent public certificate details of someone?
Sure you can have the recipient(s) mail you a digitally signed email and that works just fine, but this is not a sustainable model when you need to send encrypted email to potentially hundreds if not thousands of people whose certificate all expire on a different date.
KeyTalk by default supports the writing of S/MIME details to a used LDAP or Active Directory ensuring that your staff have directly access to the most up-to-date public certificate details within your organization.
Additionally KeyTalk can optionally write these same certificate and email address details (so public information only) to an external LDAP solution.
The external LDAP can then function as a public email address-book, which can easily be configured in commonly used email clients such as Outlook, Thunderbird and Evolution.
If you are unfamiliar with setting up your own LDAP for public address-book purposes, KeyTalk can even provide an out-of-the-box OpenLDAP based solution without additional licensing cost.
KeyTalk’s e-mail client automated configuration
Most Operating Systems have a default location to install an email encryption certificate and key-pair which KeyTalk does in a seamless manner within the constraints of the Operating System.
However that typically does not suffice to enable the user to actually make use of the S/MIME certificate.
Applications often need to be configured to make use of such an S/MIME certificate.
KeyTalk development is focused on tearing down this last hurdle to provide your end-user a proper seamless experience.
No matter the CA-source of your S/MIME certificate, KeyTalk will verify if it meets all S/MIME requirements, check if the account actually exists in commonly used email clients and configure the email client for email encryption usage.
Support initially focusses on Windows with Outlook, Mac with Mail and Outlook, and Linux with Thunderbird and Evolution.
When an external LDAP based email address-book is used to publish the public certificate details KeyTalk will even configure that LDAP server address as an address-book for these email clients.