Use UserIssuerSerialNumber

Supported on: At least Windows Server 2008 R2 or Windows 7

Registry

HKCU software\policies\microsoft\office\16.0\outlook\security

Value name: useissuerserialnumber

Enabled: useissuerserialnumber = 1

Disabled: useissuerserialnumber = 0

Description

This policy setting determines whether Outlook uses IssuerSerialNumber as the SignerIdentifier, which enables third-party email client software applications to read encrypted Outlook email messages. For more information about Cryptographic Message Syntax, refer to the RFC 5652 specification. If you enable or do not configure this policy setting, Outlook uses the IssuerSerialNumber as the SignerIdentifier. If you disable this policy setting, Outlook uses SubjectKeyIdentifier for the SignerIdentifier, which might prevent third-party email client software applications from reading encrypted Outlook email messages.