IT Professionals,
The Information Security Office, Mail Admins, and Exchange teams at IU now recommend that clients disable S/MIME certificates on their mail. This is also recommended for any services you may own that send mail on behalf of your IU accounts (e.g. Salesforce, etc). This change in policy is due to additional security provided by Exchange Online Protection, and potential conflicts with External tagging and other mail settings at IU.
We encourage all IT Pros to notify your supported departments about the updated policy to disable S/MIME certificates on their mail. Refer them to the Knowledge Base which provides instructions to Disable your client certificate (iu.edu) for most mail platforms used at IU. There is also an updated document About expired certificates for digitally signed mail (iu.edu) that informs clients to disregard the certificate renewal notices they will receive.
–IT Community Partnerships on behalf of Mail and Security teams at IU
~~~~~ Today’s IT Pro Tip ~~~~~
For upcoming IT Pro events including infoshares, coffee hours, and more that you may be interested in, please visit the ITCP Event Calendar.