Select Language

Translate

We hope you will find the Google translation service helpful, but we don’t promise that Google’s translation will be accurate or complete. You should not rely on Google’s translation. English is the official language of our site.

Products
SSL/TLS Certificates

Basic

Premium

High Assurance

Enterprise EV

Wildcard SSL/TLS

Multi-domain UCC/SAN

Enterprise EV UCC/SAN

Smart SeaL

Overview

Code Signing Certificates

Code Signing

EV Code Signing

Email, Client, and Document Signing Certificates

Secure Email (S/MIME)

Client Authentication

eSigner Document Signing

NAESB Certificates

NAESB Certificate

Content Delivery Network (CDN)

Pro

Business

Enterprise
Which Code Signing Certificate Do I Need?

What is a CDN ?
Solutions

Hosted PKI

World-Class PKI Hosting Infrastructure

Custom-Branded Issuing CA

Issue Publicly Trusted Certificates in your Company's Name

Internet of Things (IoT)

Custom IoT Solutions

Government

Protect Personal Data While Providing Essential Services

Energy Industry

North American Energy Standards Board (NAESB) Accredited Certificate Authority

SSL Manager

Windows Certificate Management Application

eSigner
Cloud Document and Code Signing Service

Submit a Ticket

Call: 1-877-SSL-SECURE

Live Chat

Knowledgebase
Company

About SSL.com
Find out more about SSL.com,
A Globally-Trusted Certificate Authority in business since 2002

Blog

Informative updates on SSL.com and PKI

Careers

Looking for a flexible environment that encourages creative thinking and rewards hard work?
We're hiring!

Privacy Policy

• How we collect information about customers
• How we use that information
• Information-sharing policy

Terms Of Service

SSL.com's Terms of Service

CA Repository

• Practices Statement
• Document Repository

Submit a Ticket

Call: 1-877-SSL-SECURE

Live Chat

Knowledgebase
Partners

Overview

Earn revenue by partnering with SSL.com

Referral Link Partners

Hassle-Free Referral link program

Reseller & Volume Purchasing Partners

Wholesale and Reseller Solution

Referral Link Program FAQ

Reseller/Volume Purchasing Signup
Support

What is SSL?

SSL in plain English

Play Video

Knowledgebase

• Detailed guides and how-tos
• Frequently Asked Questions (FAQ)
• Articles, videos, and more

Purchase Orders and Quotes

• How to Submit a Purchase Order (PO)
• Request for Quote (RFQ)
• Payment Methods
• PO and RFQ Request Form

Contact Us

• Contact SSL.com sales and support
• Document submittal and validation
• Physical address

Submit a Ticket

Call SSL.com: 1-877-SSL-SECURE

Live Chat

Select Language

Translate

Home » How-Tos » Platform » Windows » Installing an S/MIME Certificate and Sending Secure Email in Mozilla Thunderbird on Windows 10

Installing an S/MIME Certificate and Sending Secure Email in Mozilla Thunderbird on Windows 10

SSL Support Team
March 22, 2019
Certificate Installation, S/MIME, Client, and Document Signing, Windows
Thunderbird

These instructions detail how to install an S/MIME certificate and send secure email messages with Mozilla Thunderbird on Windows PCs.

Testing was done in Thunderbird version 60.5.3 on Windows 10 Enterprise, but Thunderbird has natively supported S/MIME for many years. Please check with Mozilla Support about any issues or specific instructions concerning earlier versions of Thunderbird.

Send secure email using SSL.com’s S/MIME certificates.

Buy S/MIME Certificates

Download and install the certificate in Thunderbird

Download a PKCS#12 file with your certificate from your SSL.com account by clicking the link supplied in your Certificate Activation Link email and following the on-screen instructions in your web browser.You will be prompted to create a password before downloading the file. (Keep this password secure – you will need it later.) Make sure to keep track of where you saved your PKCS#12 file, and do not lose it. If you lose your private key, you will be unable to read messages encrypted with your public key.

Note: when downloading your certificate it is possible to choose between the RSA and ECDSA algorithms via the Algorithm drop-down menu. However, ECDSA keys cannot be used for email encryption, so it’s best to leave this set to RSA.

Open Thunderbird, then select Tools >> Options from the menu bar.

In the Options window, click Advanced, select the Certificates tab, then click the Manage Certificates button.

In the Certificate Manager, click Import…, then navigate to the PKCS#12 file you downloaded from SSL.com and click Open.

When prompted, enter the password you used when downloading the PKCS#12 file, then click OK.

The certificate is now installed. Click OK to close the Certificate Manager, then close the Options pane.

Next, you will have to configure Thunderbird to use the certificate with your email account. Choose Tools > Account Settings from the toolbar.

Select Security from the list on the left side of the Account Settings window, then click the Select button under Digital Signing.

In the Select Certificate dialog box that pops up, make sure the certificate you just installed is selected. The information under Details of selected certificate should match the email address you want to use it with, and will show CN=SSL.com on the Issued by: line. After confirming that the certificate is correct, click OK.

A dialog box will pop up, asking if you want to use the same certificate for email encryption and decryption. Click Yes. You can also check the box labeled Digitally sign messages (by default) if you want to make signed outgoing mail the default option, and/or choose the option to require sending encrypted email if desired. Click OK to close the Account Settings pane.

Your S/MIME certificate is now set up and ready to use to sign and encrypt email in Thunderbird.

Go to top

Sending signed and/or encrypted email messages in Thunderbird

Begin composing a new message. Under the Security drop-down menu, select Encrypt This Message and/or Digitally Sign This Message. (Note that if you have previously set either or both of these options as the default you can skip this step.)
When you click Send, your email message will be signed and/or encrypted, as desired. Note that if you do not possess the public key of your recipient, you will receive an error message when attempting to send them encrypted mail.

For more detailed information about S/MIME email, please see our article, Sending Secure Email with S/MIME.

For more helpful how-tos and the latest industry news, sign up for SSL.com’s newsletter here:

Thank you for choosing SSL.com! If you have any questions, please contact us by email at Support@SSL.com, call 1-877-SSL-SECURE, or just click the chat link at the bottom right of this page. You can also find answers to many common support questions in our knowledgebase.

SSL Support Team

All Posts

Related How Tos

Use Your YubiKey for S/MIME Email in Thunderbird

November 15, 2019

Handle @sslcorp

Subscribe to SSL.com’s Newsletter

What is SSL/TLS?

Subscribe To SSL.com’s Newsletter

Don’t miss new articles and updates from SSL.com

3rd Party Cookies

This website uses Google Analytics & Statcounter to collect anonymous information such as the number of visitors to the site, and the most popular pages.

Keeping these cookies enabled helps us to improve our website.

Name	Provider	Purpose	Expiration
Google Analytics	Google	Collect anonymous information such as the number of visitors to the site, and the most popular pages.	365 days
StatCounter Analytics	StatCounter	Collect anonymous information such as the number of visitors to the site, and the most popular pages.	365 days

SSL/TLS Certificates

Code Signing Certificates

Email, Client, and Document Signing Certificates

NAESB Certificates

Content Delivery Network (CDN)

Installing an S/MIME Certificate and Sending Secure Email in Mozilla Thunderbird on Windows 10

Download and install the certificate in Thunderbird

Sending signed and/or encrypted email messages in Thunderbird

SSL Support Team

Related How Tos

Subscribe to SSL.com’s Newsletter

What is SSL/TLS?

Subscribe To SSL.com’s Newsletter

certificates

support

programs

company