Hello,

I did some searching on this and I'm having difficulty getting the "whole picture" on how S/MIME *should* work so I'm hoping you can help.

We have a bunch of BBs and we're slowly enabling people to use S/MIME on their devices. If they have a Thawte or Verisign cert everything works fine, we use the Desktop Manager to port the certs to the BB and we can sign, encrypt (once certs are exchanged and imported, etc.).

A lot of users, however, have DoD-issued CACs with their email certs on the card. We can't export them because the private keys are not marked as exportable. I put in a ticket with the CAC people but they said it should work, since the DoD worked closely with RIM to make it work or something to that effect.

Anyway, I know when the users send mail with Outlook they have to have the CAC in their reader (I assume for the same reason). I read that you can buy bluetooth readers to pair with the BBs, but do the cards have to be inserted into the BT card readers when the user want to send email? Is there a way to get the cert on the BB permanently?

If you don't have the time or inclination to explain it all, if you could help point me in the right direction to somewhere that has it clearly written out I'd appreciate it. If you have a cheat sheet on getting it working that would be even better, and if you can explain it as well as helping to get it working that would be the best!

Thanks,
Jason