S/MIME Certificates

Protect your company email accounts and messages

Sender confirmation and message encryption with S/MIME Certificates

Thanks to the protocol of the same name, S/MIME Certificates let you send signed and encrypted emails. This offers security benefits and also boosts brand awareness of the organization, ensuring the security of two fundamental aspects of emails: confidentiality and integrity.

Actalis offers S/MIME certificates that are recognized on the most popular platforms and compatible with all the main S/MIME-compliant email applications, such as Microsoft Outlook, Mozilla Thunderbird, Exchange, Gmail, and many others.

Find out more about our solutions

The benefits of Actalis S/MIME Certificates

In addition to a free version of the certificate, valid for an individual email address, Actalis also offers a corporate version of S/MIME Certificates, which contain data that strengthens brand awareness of the organization. Thanks to these certificates, emails are made truly secure, irrespective of the features of the email service being used.

  • Confidentiality - the message sent is encrypted and cannot be intercepted by malicious parties as it can only be decrypted, and so read, by the recipient.
  • Authenticity and integrity - the message is digitally signed and the recipient can check to make sure that the sender is really the one displayed, and whether the message has been altered.
The benefits of Actalis S/MIME Certificates

Actalis S/MIME Certificate solutions

Free version to test the effectiveness of S/MIME Certificates, also for personal emails

To check out the benefits of S/MIME Certificates, all you need is an email address. Free S/MIME Certificates contain just the owner's email address and are valid for 1 year. This kind of certificate can be requested at any time, with no action required by third parties.

Apply for a free S/MIME certificate

Corporate messages can be recognized thanks to Corporate S/MIME Certificates

To add personal details like first name and surname or the company/organizational unit that the owner belongs to as well as the email address, Corporate S/MIME Certificates are also available, which are valid for 3 years. The technical signature method associated with this kind of certificate can be configured according to the company's specific needs (e.g. specific regulatory frameworks).

Request Corporate S/MIME Certificates

Tell a tech specialist what you need

S/MIME Secure Email Certificates are an important tool for securing email. Contact us for more information about what we can offer or to start designing and implementing custom solutions.

Ask us to get in touch with you

More details

S/MIME certificates are issued using a self-provisioning platform by completing the following forms:

Free S/MIME certificates can be requested at any time, requiring no preparation by third parties.

For Corporate S/MIME Certificates, however, certain preliminary steps are required from the customer (namely, the company/body of the users involved):   

  1. Defined user list – the customer informs Actalis, using an agreed secure channel, of the list of users to whom certificates should be issued.
  2. Voucher created – The Actalis Delivery team creates a list on the Certification Authority and generates a voucher which it thereby communicates to the customer.
  3. Voucher distributed – The customer communicates the voucher code to the users for whom it has requested the certificate.
  4. Certificates generated – Individual users access the online request form, where they can obtain the certificate by entering the voucher details and their email address.
When submitting the online request form, the user is also required to enter a “challenge”, received via email, which enables the CA to verify that the user is indeed the owner of the email address.

When the request form has been correctly filled in and submitted, the user receives the certificate in real-time in .PFX (PKCS#12) file format, also containing the private key; the password for the .PFX file is displayed on the screen.

Finally, the user downloads the .PFX file and imports it to its own email client, after which it can start sending signed or encrypted emails straight away.
  • Microsoft Outlook
  • Windows Live Mail
  • Mail for Windows 10
  • Outlook Web Access + S/MIME Control
  • Apple Mail (OS X 10.6+, iOS 8+)
  • Mozilla Thunderbird v52 or later
  • Gnome Evolution v3.18 or later
  • SeaMonkey v2.46 or later
  • eM Client
  • The Bat!
  • CipherMail (for Android)
  • R2Mail2 (for Android)
  • Nine (for Android)
  • Fossa Guard Pro