To digitally sign your e-mails, first select your e-mail account in Outlook. Then go to "File" and afterwards to "Options" in the top menu.
Now click on "Trust Center" and then on "Trust Center Settings".
Now click "Import/Export".
Now select your certificate file via "Browse" and enter the password. Confirm this by clicking "OK".
Check the boxes "Encrypt contents and attachments for outgoing messages" and "Add digital signature to outgoing messages". You can adjust these settings as required when composing a message. Now click on "Settings".
Outlook uses the hash algorithm "SHA1" by default. Change this value to at least "SHA256". The encryption algorithm must be "AES (256-bit)". Click on "OK".
Confirm the Trust Center settings with "OK". From now on, you can digitally sign your e-mails in Outlook.
If you now write a new e-mail, it will be signed and encrypted by default. If the recipient does not have a certificate, you can deactivate the "Encrypt" and/or "Sign" settings under "Options" by clicking on the respective buttons and send the e-mail unencrypted.
Note: If the message 'Encryption problems' appears when you send a message using the new certificate, send yourself a one-off 'signed only' e-mail.