These days, email encryption has become an essential feature. It helps in preventing data theft and stopping email spam. However, sometimes while opening an encrypted email, you might end up seeing the- Your Digital ID name cannot be found by the underlying security system error on Microsoft Outlook.
The error usually appears when you try to access an encrypted email in Microsoft Outlook using a certificate with only 3DES encryption abilities. So the question is, how do you fix this error? Below, I have shared some of the methods that will help you out.
Your Digital ID name cannot be found by the underlying security system on Microsoft Outlook
You can get rid of the error by trying out different hacks like verifying your certificates, enabling client authentication, tweaking the registry, and more. However, in this article, I will be having a look at the following hacks:
- Verify your certificate
- Enable the Client Authentication & Secure Email option
- Edit Registry
- Remove Problematic Senders Certificates
Now let me talk about these fixes individually below:
1] Verify Your Certificate
The first thing you should do is make sure you have a certificate installed. If there is no certificate at all, then it won’t be able to encrypt your email.
To verify this, follow the below steps:
- Launch Outlook and click on File> Options.
- Next, click on Trust Center from the sidebar.
- Then click on Trust Center Settings located under Microsoft Outlook Trust Center.
- Go to the Email security option, and next to the settings button, look for cert. title.
Now open the certificate title and check whether it is blank or not. Then click on the settings button, and you can select the certificate.
If the certificate is blank, then do install one and then check if you are still getting the same error or not.
2] Enable the Client Authentication & Secure Email option
Many users have confirmed that the issue got fixed after they have enabled client authentication and the secure email option.
So you can do the same by following the below steps:
- Open Windows Search and type Internet Options
- Click on Internet Options and go to the Content tab
- Click on Certificates > Advanced option
- Now look for the Client Authentication and Secure Email option and place a checkmark next to them.
- Click on OK to save the changes.
Once done, try to encrypt the email and see if the issue is still appearing or not.
3] Edit Security Settings in Registry
You can also consider editing registry settings. However, editing registry files can put your computer at risk.
So it is recommended that you take a backup of your registry files before editing them. Once you have taken a backup, follow the below steps:
- Press Windows Key + R to launch the Run box.
- Type regedit and press shift+ enter to launch Registry Editor.
- Go to the following path:
- Now right-click on the blank space on the right-side Window, click on New > DWORD Value and name it as UseAlternateDefaultEncryptionAlg
- Once created, double-click on it and change the value from 0 to 1
- Next, follow the same steps to create a value of STRING and name it DefaultEncryptionAlgOID
- Then double-click on the entry and change the value to 1.2.840.113549.3.7
That’s it. Now go to Outlook and try to encrypt the email and see if it worked.
4] Remove Problematic Senders’ Certificates
There could also be a chance that the error occurs because of a problematic sender certificate. So consider deleting it and see if it works for you.
To delete the sender certificates, follow the below steps:
- Open Run prompt, type MMC, and press Shift + Enter to launch Microsoft Management Console
- Next, press CTRL+ M keys to open the Snapin Windows
- Double-click on Certificates, and select the My User Account option > Finish
- Go to Certificates > Current User, then Other People, and then on Certificates.
- Next, delete the problematic sender certificates
- Then close and save console settings to Console 1
That’s it. Finally, check if you are still encountering the Your Digital ID name cannot be found by the underlying security system error.
How To Import Certificate (Digital ID) In Outlook?
Importing certificates into Microsoft Outlook is a straightforward process. And you can do it by following the below steps:
- First, launch Microsoft Outlook and go to Options
- Next, open the Trust Center dialog box
- In Outlook 2007, the option can be found under Tools > Trust Center
- For Outlook 2010 and 2013, it’s under File > Options > Trust Center (left sidebar)
- Then click on Email Security from the left bar
- Go to the Digital IDs (Certificates) section
- Click on Import / Export button.
- Select Import existing Digital ID from a file option.
- Then click the Browse button, and in the Locate Security Profile dialog box, select a Digital ID
- Enter the password in the password box, enter a name in the Digital ID name box
That’s it. You have successfully imported a digital certificate to Microsoft Outlook.
How To Export Certificate (Digital ID) In Outlook?
- Launch Outlook
- Go to File > Options > Trust Center > Trust Center Settings
- Then go to Email security
- From Digital IDs, select Import/Export
- Next, you have to select Export Your Digital ID to a file
- Now click on Select and choose the correct certificate that you wish to export
- Then select, browse and choose a location save to File
- Next, enter your password and click on Ok
- Finally, create a new email message, attach the exported PFX file, and send the email to yourself.
So that was all for how to export certificates from Microsoft Outlook.
So those were all the fixes for Your Digital ID name cannot be found by the underlying security system error on Microsoft Outlook. I hope the above methods did help you fix the issue. In case you get stuck at anything, drop a comment below.