![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(163.2, 28.000000000000004%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJL%3C/text%3E%3C/svg%3E)
Microsoft Exchange Online
A Microsoft email and calendaring hosted service.
1,990 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 35%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EXQ%3C/text%3E%3C/svg%3E)
Hi, @Jacky Lai
Yes, using S/MIME to encrypt e-mail communication between the Domino server and M365 is a viable approach. This involves the following steps:
- Make sure that both your Domino and M365 users have a valid S/MIME certificate from a trusted certificate authority.
- In M365, you need to publish the S/MIME certificate to a user profile in Azure Active Directory. Configure M365 to send and receive encrypted and signed email using S/MIME.
- Use Azure AD Connect or a similar tool to synchronize the appropriate user attributes, including S/MIME certificates, from Azure Active Directory to the local Active Directory (AD). Ensure that the attributes used to map the S/MIME certificates stored in Azure AD to the correct attributes in the local AD.
- Configure your Domino server to query your local LDAP server for S/MIME certificates. Ensure that your Domino server can access and use the S/MIME certificate from the LDAP server to encrypt and decrypt e-mail.
More information can be found Configure S/MIME in Exchange Online | Microsoft Learn
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".