Setting up S/MIME for email
-
- UpdatedJan 30, 2025
- 2 minutes to read
- Yokohama
- Notifications
S/MIME is a protocol for sending digitally signed and encrypted emails to ensure the confidentiality, authenticity and integrity.
Set up S/MIME for outbound mails (signing and encryption)
- Digital signature
- Encryption
- Digital signature and encryption
- email_account_admin and sn_kmf.cryptographic_manager roles
- Key pair (private key and public key)
- CA certificate
- Email certificate
Upload the instance email account key pair and email certificates, and enable outbound S/MIME properties. For more information, see Enable S/MIME.
If there are multiple recipients and some of the recipients do not have valid certificates, the email will be sent only to recipients with a valid certificate.
Set up S/MIME for inbound mails (sign verification and decryption)
- Signature verification
- Decryption
- Signature verification and decryption
For information about enabling inbound S/MIME properties, see Enable S/MIME.
If the system fails to decrypt a message, no inbound actions will run on the email and it is moved to the received-ignored status.
To set up the system to ignore inbound signed emails if the signature cannot be verified or is invalid, admins can create the email.inbound.smime.ignore_unverified_emails and set it to true.
For more information about key management and cryprographic module, see Key Management Framework Reference.
On this page
Related Content
- Activate S/MIME Email
You can activate the S/MIME Email plugin (com.glide.email.smime) for Notifications if you have the admin role.