S/MIME Certificates

Protect your company email accounts and messages

Sender confirmation and message encryption with S/MIME Certificates

Thanks to the protocol of the same name, S/MIME Certificates let you send signed and encrypted emails. This offers security benefits and also boosts brand awareness of the organization, ensuring the security of two fundamental aspects of emails: confidentiality and integrity.

Actalis offers S/MIME certificates that are recognized on the most popular platforms and compatible with all the main S/MIME-compliant email applications, such as Microsoft Outlook, Mozilla Thunderbird, Exchange, Gmail, and many others.

Find out more about our solutions

The benefits of Actalis S/MIME Certificates

In addition to a free version of the certificate, valid for an individual email address, Actalis also offers a corporate version of S/MIME Certificates, which contain data that strengthens brand awareness of the organization. Thanks to these certificates, emails are made truly secure, irrespective of the features of the email service being used.

  • Confidentiality - the message sent is encrypted and cannot be intercepted by malicious parties as it can only be decrypted, and so read, by the recipient.
  • Authenticity and integrity - the message is digitally signed and the recipient can check to make sure that the sender is really the one displayed, and whether the message has been altered.
The benefits of Actalis S/MIME Certificates

Actalis S/MIME Certificate solutions

Free version to test the effectiveness of S/MIME Certificates, also for personal emails


To check out the benefits of S/MIME Certificates, all you need is an email address. Free S/MIME Certificates contain just the owner's email address and are valid for 1 year. This kind of certificate can be requested at any time, with no action required by third parties.

Apply for a free S/MIME certificate

Corporate messages can be recognized thanks to Corporate S/MIME Certificates


To add personal details like first name and surname or the company/organizational unit that the owner belongs to as well as the email address, Corporate S/MIME Certificates are also available, which are valid for 3 years. The technical signature method associated with this kind of certificate can be configured according to the company's specific needs (e.g. specific regulatory frameworks).

Request Corporate S/MIME Certificates

Tell a tech specialist what you need

S/MIME Secure Email Certificates are an important tool for securing email. Contact us for more information about what we can offer or to start designing and implementing custom solutions.

Ask us to get in touch with you

More details

S/MIME certificates are issued via an on-line procedure (see "Certificate request web forms" below).

You can request your Free S/MIME certificate any time, without any prior steps being necessary by other parties.

For Corporate S/MIME Certificates, a few preliminary steps involving the Customer (the organization that end users belong to) are required:

  1. Customer must send to Actalis, in a secure way*, a list of personal data of all the end users that should be issued a certificate;
  2. Actalis delivery team will then process the above list, obtaining a unique "voucher" code which is reported to Customer;
  3. Customer must then share the "voucher" code with all its end users (only to those entitled to receive a certficate);
  4. Finally, end users can go to the request web form (see below) and request their certificate, provided they can enter the correct voucher code and their correct email address (as previously communicated to Actalis by Customer at step 1).

*Details are provided to Customer subsequently to receiving a purchase order for Corporate S/MIME Certificates. To get a quote, please contact Actalis' Sales department.

Regardless of the chosen certificate policy, submission of the web-based request form requires that the requestor also enters a "challenge" sent to him/her by email. This allows the CA to verify that the requestor can access to the mailbox at the address to be included in the certificate.

After properly filling-out and submiting the on-line request form, the user obtains his/her certificate in real time as a PKCS#12 file (.PFX extension), therefore also containing the private key. The password protecting the .PFX file is shown in the browser window. After downloading the .PFX file, the user can import it into his/her favourite email application and start sending signed and/or encrypted emails.

Certificate request web forms

  • Microsoft Outlook
  • Windows Live Mail
  • Mail for Windows 10
  • Outlook Web Access + S/MIME Control
  • Apple Mail (OS X 10.6+, iOS 8+)
  • Mozilla Thunderbird v52 or later
  • Gnome Evolution v3.18 or later
  • SeaMonkey v2.46 or later
  • eM Client
  • The Bat!
  • CipherMail (for Android)
  • R2Mail2 (for Android)
  • Nine (for Android)
  • Fossa Guard Pro