Hi all,I was wondering how you could implement an mechanism to ensure the integrity of the mails the FIM-service sends. As you all know,quite important workflows may rely on mails and approvals, and a manipulation could lead to ramifications, that are more or less severe.My first thought was - give the ILM service account a certificate from the internal CA (I think it already has one) and let's sign those mails. Also, there may be sensitive information inside those mails. Let's encrypt the content for that too.But I really don't exactly know whats going on behind the surface. As it's not an Exchange issue, how could I implement this?Thanks for your advice,Kind regards,MMF

The FIM service today requires that all mail be Kerberos authenticated by Exchange. It does not accept mail from any non-trusted source. Beyond the kerberos authentication, it is not possible to use digitally signed mail.