Wiki source code of TumzertifikatInstallieren

Last modified by Aysegül Omus on 2025/01/31 12:25
Show last authors
1 {{toc/}}
2
3
4
5 = 1. TUM Certificate =
6
7 == 1. Importing the certificate ==
8
9 === 1.1. Thunderbird ===
10
11 ==== 1.1.1. Importing the certificate ====
12
13 To import the certificate to Thunderbird you need to open the '**Preferences'** in Thunderbird.
14
15
16
17 [[image:/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/Inbox - Mozilla Thunderbird_preferences_NEU.jpg||width="300" height="346" alt="Inbox - Mozilla Thunderbird_preferences_NEU.jpg"]]
18
19
20
21
22
23
24 Here you choose '**Erweitert**' and select '**Manage Certificates**'.
25
26
27 [[image:/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/Thunderbird Preferences_manage-certicates.jpg||width="566" height="491" alt="Thunderbird Preferences_manage-certicates.jpg"]]
28
29
30
31
32
33
34 Then you select '**Import**'.
35
36
37
38
39 [[image:/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/Certificate Manager_thunderbird_import1.jpg||width="728" height="393" alt="Certificate Manager_thunderbird_import1.jpg"]]
40
41
42 {{html wiki="true"}}
43 <sticky> </sticky>
44 {{/html}}
45
46
47
48
49
50
51
52
53 Here you navigate to the certificate to import and select it.
54
55
56 [[image:/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/Certificate File to Import_1.jpg||width="727" height="542" alt="Certificate File to Import_1.jpg"]]
57
58
59
60
61
62
63 Now enter your chosen password.
64
65
66 [[image:/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/Password Required_thunderbird_dfnpin.jpg||width="494" height="151" alt="Password Required_thunderbird_dfnpin.jpg"]]
67
68
69
70
71
72
73 If you entered the correct password you see the following window.
74
75
76 [[image:/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/Alert_certificate_installed.jpg||width="608" height="129" alt="Alert_certificate_installed.jpg"]]
77
78
79
80
81
82
83
84 Now your certificate gets listed in '**Your certificates**'.
85
86
87 [[image:/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/Certificate Manager_thunderbird_import2.jpg||width="752" height="403" alt="Certificate Manager_thunderbird_import2.jpg"]]
88
89
90
91
92
93
94
95
96 ==== 1.1.2. Add a new identity ====
97
98 To sign and encode from the @tum.de mail address you need to add a new identity. Therefore you open the '**Preferences'** in Thunderbird.
99 **{{html wiki="true"}}<span class='WYSIWYG_COLOR ' style='color:Red'>Attention:</span>{{/html}}** @ma.tum.de don't need to do this.
100
101
102 [[image:/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/Inbox - Mozilla Thunderbird_account_settings.jpg||width="299" height="346" alt="Inbox - Mozilla Thunderbird_account_settings.jpg"]]
103
104
105
106
107
108
109 The following screenshot shows the settings for the @in.tum.de account you are adding the identity for.
110
111
112 [[image:/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/Account Settings_manage_identities.jpg||width="716" height="665" alt="Account Settings_manage_identities.jpg"]]
113
114
115 Here you click on '**Add**'.
116
117 [[image:/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/Identities_add.jpg||width="477" height="187" alt="Identities_add.jpg"]]
118
119
120
121
122
123
124
125 [[image:/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/New Identity_2.jpeg||width="658" height="679" alt="New Identity_2.jpeg"]]
126
127
128
129
130
131
132 ==== 1.1.3. Edit the identity ====
133
134
135
136
137
138
139 You now need to select the certificate for the new identity. For this you select the new identity and click on '**Edit**'.
140
141
142 [[image:/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/Identities_edit.jpg||width="482" height="194" alt="Identities_edit.jpg"]]
143
144
145
146
147
148
149
150
151 Then you select for **Digital Signing** and **Encryption** your certificate.
152
153
154 [[image:/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/Edit selectzertifikat1.jpg||width="658" height="681" alt="Edit selectzertifikat1.jpg"]]
155
156
157
158
159
160
161
162
163 Finally you click on **OK**.
164
165
166 [[image:/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/Edit maxmustermannidentitycertauswählen.jpg||width="662" height="682" alt="Edit maxmustermannidentitycertauswählen.jpg"]]
167
168
169
170
171
172
173 ==== 1.1.4. Signing and encryption of Emails ====
174
175 The following screenshot shows a encrypted E-Mail. If there is a key visible in the bottom of the windows the email will be sent encrypted. The letter symbol means it will be sent signed.
176
177 **{{html wiki="true"}}<span class='WYSIWYG_COLOR ' style='color:Red'>Important:</span>{{/html}}** You need to always sign your emails if possible. Only if a email is signed you can ensure that the email is from the person saying they sent the mail and still contains the intended data. Sensitive data should be encrypted so third persosn can't read them.
178
179
180 [[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/thunderbirdverschlmail.jpg||alt="thunderbirdverschlmail.jpg"]]
181
182
183
184
185
186
187
188
189
190 [[image:/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/Write: Test_2.jpg||width="799" height="404" alt="Write: Test_2.jpg"]]
191
192
193
194
195
196
197
198
199 By clicking **View Security Info**you can inspect the informations about the sender's certificate.
200
201
202 [[image:/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/Write: Test_security_info.jpg||width="799" height="404" alt="Write: Test_security_info.jpg"]]
203
204
205
206
207
208
209
210
211 [[image:/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/Message Security_thunderbird_jpg.jpg||width="602" height="416" alt="Message Security_thunderbird_jpg.jpg"]]
212
213
214
215
216
217
218
219 === 1.2. Apple Mail Programm ===
220
221 ==== 1.2.1. Import certificate ====
222
223
224
225
226
227
228
229 The TUM certificate was saved without file extension. You should first add the extension **.p12** so it can be handled correctly.
230
231
232 Now you open the certificate.(Double click)
233
234
235 [[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/11.zertifikatinkeychainimportierenneu.png||alt="11.zertifikatinkeychainimportierenneu.png"]]
236
237
238
239
240
241
242 In the pop up window you enter the password you entered when saving it in firefox.
243
244
245 [[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/222.backuppassworteingebenneu2.png||alt="222.backuppassworteingebenneu2.png"]]
246
247
248
249
250
251
252 Then the certificate is saved in **Keychain Access**. You can open this application via **Applications -> Utilities**.
253
254
255 [[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/33.keychaintumzertifikatneu.png||alt="33.keychaintumzertifikatneu.png"]]
256
257
258
259
260
261
262 Once the certificate is saved into the Keycain Access it's able to be used by Apple Mail.
263
264
265
266
267
268
269 ==== 1.2.2. Add new identity ====
270
271 Now you should add an alias address to Apple Mail. Therefore open the Preferences.
272
273
274 [[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/1.macmaileinstellungen.png||style="font-family: -webkit-standard;" alt="1.macmaileinstellungen.png"]]
275
276
277
278
279
280
281
282
283 Open the context menu and select **Edit Email Addresses**.
284
285
286 [[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/2.macmailaccountinformation.png||style="font-family: -webkit-standard;" alt="2.macmailaccountinformation.png"]]
287
288
289
290
291
292
293
294
295 In the new window click '**+**' and enter email address and name. Finally click onto '**OK**'.
296
297
298 [[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/3.macmaileditemailadress.png||style="font-family: -webkit-standard;" alt="3.macmaileditemailadress.png"]]
299
300
301
302
303
304
305
306
307
308 The new email address for the certificate was added.
309
310
311 [[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/44.applemailnewidentity2.png||style="font-family: -webkit-standard;" alt="44.applemailnewidentity2.png"]]
312
313
314
315
316
317
318 ==== 1.2.3. Signing and encrypting emails. ====
319
320 If you want to encrypt an email with the TUM certificate you need the just created email address in the context menu of **From**.
321
322
323 [[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/mactumzertverschlemail.png||style="font-family: -webkit-standard;" alt="mactumzertverschlemail.png"]]
324
325
326
327
328
329
330 [[image:https://xwiki.rbg.tum.de/bin/download/Informatik/Helpdesk/Intern/TumCert/WebHome/mactumzertverschlemail2.png||width="709" height="328" style="font-family: -webkit-standard;" alt="mactumzertverschlemail2.png"]]
331
332 === 1.3. Apple - Outlook 2019 ===
333
334 [[Here>>CIT.ITO.Docs.Guides.Helpdesk.TumEmail.WebHome]] is shown how you can set up the email account for the TUM email address.
335
336
337
338 First click Outlook in the tab, then **Preferences**.
339
340
341 [[image:outlookpreferences.png||width="900"]]
342
343
344
345
346
347
348 Select **Accounts**.
349
350
351 [[image:accounts.png||width="900"]]
352
353
354
355
356
357
358
359 Then select your RBG (in.tum/ma.tum) account in the open window on the left and click **Advanced**.
360
361
362 [[image:zerttumadvanced.png||width="900"]]
363
364
365
366
367
368
369
370 Click on the Security tab and select the RBG certificate for signing and encrypting the emails.
371
372
373 [[image:Screenshot 2020-06-19 at 09.39.12-certnotselected.png||width="900"]]
374
375
376
377 [[image:Screenshot 2020-06-19 at 09.14.46-chooseacertificate.png||width="900"]]
378
379
380
381 [[image:Screenshot 2020-06-19 at 09.15.04-certauswaehlen.png||width="900"]]
382
383
384
385
386
387
388
389 Confirm your selection with **OK**.
390
391
392 [[image:Screenshot 2020-06-19 at 09.13.31-certausgewaehltok.png||width="900"]]
393
394
395
396
397
398
399
400 === 1.4. Windows- Outlook 2019 (for the TUM email address, without a new identity) ===
401
402 [[Here>>CIT.ITO.Docs.Guides.Helpdesk.TumEmail.WebHome]] is shown how you can set up the email account for the TUM email address.
403
404
405
406 ==== 1.4.1.Import certificate ====
407
408 Open Outlook and select **File**
409
410
411 [[image:EN1.png||width="900"]]
412
413
414
415
416
417
418 And then select **Options**
419
420
421 [[image:options_EN2.png||width="1000"]]
422
423 [[image:Out1.png||width="900"]]
424
425
426
427
428
429
430 Select the **Trust Center** and click on the button **Trust Center Settings**.
431
432
433 [[image:EN3.png||width="900"]]
434
435
436
437
438
439
440 In the next **Trust Center** window, select **Email Security** on the left.
441
442
443 [[image:EN4.png||width="900"]]
444
445
446
447
448
449
450 In the right section of the **Digital IDs (Certificates)** area, please select **Import/Export**. In the window that opens, click on **Browse**.
451 Please select the correct certificate and confirm with **OK**. Now you return to the view **Import/Export Digital IDs**, please enter the password you have assigned during the export process from Firefox. Then give the certificate a name and confirm with **OK**.
452
453
454 [[image:EN5.png||width="900"]]
455
456
457
458
459
460
461 ==== 1.4.2.Signing and encrypting e-mails ====
462
463 Your certificate has been imported into Outlook and you can select it under **Encrypted e-mail messages** by clicking on the Set **settings** button for the e-mail address.
464
465
466 [[image:EN6.png||width="900"]]
467
468
469
470
471
472
473 Now you should see under **Signature Certificate** and **Encryption Certificate** the certificate that you have just installed. If this is not the case, you still have to select the certificate by clicking the **Select** button.
474
475
476 [[image:EN7.png||width="900"]]
477
478
479
480
481
482
483 Here you can see the issuer of the certificate and its expiry date.
484
485
486 [[image:EN8.png||width="900"]]