Third-Party CAs

As discussed in "Digital Certificates and Active Directory Attributes" in General PKI Planning Considerations, PKI administrators using CAs other than Windows Server 2003 for their PKI should publish their digital certificates to the userCertificate attribute in Active Directory. Making digital certificates available using this attribute enables Microsoft e-mail clients such as Outlook, Outlook Express, and Outlook Web Access with the S/MIME control to retrieve and use these digital certificates.