Hi all,
I have deployed enterprise ca server on server 2012 r2 and I created certificate template for secure mail and published to domain.Client could access smime certificate and set their outlook clients themself.They can send email with the digital certificate that published local certificate and certificate looks validated in our domain.But local certificate looks not validated on outside domains(etc Hotmail,gmail) when client send mail with local certificate.İt is a normal behavior.Because this certificate not validated on public ca pki.I want to make validated secure mail certificate via our local certificate authority.There are houndred of users in the domain and we need to buy a lot of secure mail certificate for each user and this will be very difficult period.Can I build validated pki in my domain ? or can i set another root authority(digicert,verisign) for creating secure mail template ?
Thanks in advance