Configuring Security

Recover Keys

Key recovery is necessary for two reasons:

In key recovery, as in the enrollment process, the user is issued a token. The recovery token is issued the same way you choose to issue enrollment tokens, either through an administrator or by e-mail. After entering this recovery token in Outlook, a new signature key pair is created for the user. In addition, KMS returns all of the user's old keys. For imported users, a new encryption key pair is generated.

To recover keys:

  1. Start System Manager
    On the Start menu, point to Programs, point to Microsoft Exchange, and then click System Manager.
  2. In the console tree, click Advanced Security.
  3. In the details pane, right-click Key Manager, point to All Tasks, and then click Recover Keys.
  4. In the Key Management Service Login dialog box, type your password, and then click OK. The default password is password.

    Note   You will have to re-type your password each time you try to perform a task or click a tab in the Key Manager Properties dialog box.

  5. To recover keys, in Recover Users Selection, you can perform one of the following tasks: When the process is finished, you will get a confirmation window telling you that all selected users were successfully recovered.

Related Topics

Set Per-User Security Options