S/MIME Android Installation Guide

This is a guide on how to download and install an S/MIME certificate as a PFX file on an Android device. The device used here is a mobile phone with an Android 12 Operating System. Other versions of Android might have slight interface differences but the process should be essentially similar.  

Send secure email using SSL.com’s S/MIME certificates, with options for Basic, Personal ID, Organization Validation, and Personal ID+Organization validated certificates.

COMPARE S/MIME Certificates

Step 1: Send the identity verification link to your email

This initial step can be done with your laptop or desktop.

Login to your SSL.com account menu. Click the Billings tab and choose Orders.

Look for your S/MIME certificate order and click the download link to display the order page.

Scroll to the right of the page and click the send identity verification link under the Action column. The link will be sent to the email address associated with the certificate and will allow you to generate a downloadable PFX file.

Step 2: Open the message containing the Certificate Activation Link on your Android device’s Email App

Step 3: Click the Certificate Activation Link

You will be redirected to your SSL.com account on your android device’s internet browser

Step 4: Login to your SSL.com account using your credentials

Place your username/email and password then click the blue Next button.

Step 5: Click the Generate Certificate button

On the page, you can view the email address (Subject DN) that the S/MIME certificate is assigned to. At the top of the page, you will also see this message:

Note: Your private key will be generated on your own computer by your web browser. SSL.com will never see or handle your private keys.  
Note: You can choose between RSA and ECDSA with the Algorithm drop-down menu, but ECDSA cannot be used as an email encryption key, so it’s best to leave this set to RSA. You can also click the Show Advanced Options button, which will reveal a drop-down menu for choosing the key size.
Once you click the Generate button, you will be able to see the text versions of your Certificate Signing Request (CSR), Private Key, and your S/MIME certificate. You have the option to save these on a text editor. Just make sure to keep them secure.

Step 6: Set a password to create a downloadable pfx file for your S/MIME certificate

Note that the password should be a minimum of 6 characters. Upon setting your password, click the Download button to the right of the password box. Keep this password in mind because it will be used to install your certificate.

Step 7: Enter your password to extract your certificate

Upon clicking the Download button, an “Extract Certificate” pop-up window will appear requiring you to enter the password you have created. Type in your password then click the OK button.

Step 8: Choose your certificate type

After clicking the OK button, you will be given two download options for your S/MIME certificate: VPN & app user certificate or Wi-Fi certificate. Choose VPN & app user certificate for the type of your certificate then click the OK button.

Step 9: Place a name for your certificate

A default name will be assigned to the certificate, consisting of a long string of letters and numbers. You can choose to change the name to one that you can easily remember.

Step 10: A message will appear saying that your S/MIME certificate has been installed to your Android device

Once you confirm the name for your certificate and click the OK button, you will see the message: User certificate installed. You can now proceed to check the S/MIME certificate you have downloaded on your phone.

Step 11: Check the Security settings of your android phone

Go to Settings and click Security

Next, click Encryption & credentials
Click User credentials
Click on the S/MIME certificate you have installed to check its details.

Since it has been downloaded as a PFX file, you will see that your certificate contains your user key/private key, your actual certificate, and the SSL.com CA certificate which assures your device that your certificate can be trusted.

Send secure email using SSL.com’s S/MIME certificates, with options for Basic, Personal ID, Organization Validation, and Personal ID+Organization validated certificates.

COMPARE S/MIME Certificates

Thank you for choosing SSL.com! If you have any questions, please contact us by email at Support@SSL.com, call 1-877-SSL-SECURE, or just click the chat link at the bottom right of this page. You can also find answers to many common support questions in our knowledgebase.

Stay Informed and Secure

SSL.com is a global leader in cybersecurity, PKI and digital certificates. Sign up to receive the latest industry news, tips, and product announcements from SSL.com.

We’d love your feedback

Take our survey and let us know your thoughts on your recent purchase.