Policy

Enable Retrieval of Remote Certificate Authority Information

This policy setting controls whether Outlook will use remote certificate authority information in a secure email message to validate that its certificate is trusted. If you enable this setting, you’ll allow the operating system to access remote network locations specified in a certificate for validation. If you disable or don’t configure this setting, retrieval of remote Certificate Authority Information won’t be allowed, and only stored certificates will be used for authentication.

Policy
Pack Microsoft Office
Category Microsoft Outlook 2016 / Security / Cryptography
Policy ID 9e3929497478
Internal name L_EnableAIACertEvaluation

Registry

Copy registry mappings

HKCU\software\policies\microsoft\office\16.0\outlook\security\enableaiacertextension (enabled) = 1
HKCU\software\policies\microsoft\office\16.0\outlook\security\enableaiacertextension (disabled) = 0

Policy notes

This policy setting controls whether Outlook will use remote certificate authority information in a secure email message to validate that its certificate is trusted. If you enable this setting, you’ll allow the operating system to access remote network locations specified in a certificate for validation. If you disable or don’t configure this setting, retrieval of remote Certificate Authority Information won’t be allowed, and only stored certificates will be used for authentication.

Related policies

Always use TNEF formatting in S/MIME messagesCheck for the user's private key when the user sends an encrypted email that includes the user as a recipientDo not check e-mail address against address of certificates being usedDo not display 'Publish to GAL' buttonDo not provide Continue option on Encryption warning dialog boxesEnable Cryptography IconsEncrypt all e-mail messages