Encryption issue on Outlook after renew the smart card PKI certificate:
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\outlook\security]
"AllowPrivateKeyCheck"=dword:00000000
To do this please search regedit.exe, go to HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Outlook\Security, then right click on Security folder > New > DWORD (32 bit) Value
> rename this New Value with AllowPrivateKeyCheck
The default value is 0x00000000 and it should be left this way. If the key already exists and the value is not 0, please set it on 0.
Then close Regedit, restart Outlook and try again.
Please enter to the user's PC with admin rights and clean up the certificate cache by doing the following*:
• Close Outlook and any other browsers and applications
• Remove the smart card from the card reader
• Remove folders in C:\Windows\System32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache
• Remove folders in C:\Windows\Syswow64\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache
• Remove folders in C:\Users\%Username%\AppData\LocalLow\Microsoft\CryptnetUrlCache
• Remove files from C:\Users\%Username%\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates
• Remove files from C:\Users\%Username%\AppData\Roaming\Microsoft\SystemCertificates\My\Keys
• Restart the computer, insert the PKI card and try again
*Please note that if the user has installed any soft certificates, these have to be reinstalled after cleaning the certificate cache.
Please check if the correct certificates are displayed in Outlook Options -> Trust Center -> Trust Center Settings.. -> Email Security -> Settings
Click on Choose ->Select a certificate window will open-> click on ->Click here to view cert properties->click on Install cert.
Click on OK.-> Restart Outlook.