Installing an S/MIME Certificate and Sending Secure Email in Mozilla Thunderbird on Windows 10

These instructions detail how to install an S/MIME certificate and send secure email messages with Mozilla Thunderbird on Windows PCs.

Testing was done in Thunderbird version 115.6.0 on Windows 10 Pro, but Thunderbird has natively supported S/MIME for many years. Please check with Mozilla Support about any issues or specific instructions concerning earlier versions of Thunderbird.
Secure your email communications today with SSL.com S/MIME certificates. Protect sensitive information and enjoy peace of mind with authenticated emails.

BUY YOUR S/MIME CERTIFICATE

Download your SSL.com S/MIME Certificate

Download a PKCS#12 file with your certificate from your SSL.com account by clicking the link supplied in your Certificate Activation Link email and following the on-screen instructions in your web browser.You will be prompted to create a password before downloading the file. (Keep this password secure – you will need it later.) Make sure to keep track of where you saved your PKCS#12 file, and do not lose it. If you lose your private key, you will be unable to read messages encrypted with your public key.

Note: when downloading your certificate it is possible to choose between the RSA and ECDSA algorithms via the Algorithm drop-down menu. However, ECDSA keys cannot be used for email encryption, so it’s best to leave this set to RSA.

Install your S/MIME Certificate on Mozilla Thunderbird

  1. Login to Mozilla Thunderbird and click Account Settings.
  2. Click the End-To-End Encryption tab.

  3. Scroll down to the S/MIME section and click the Manage S/MIME Certificates button.

  4. Under Your Certificates, click the Import… button.

  5. Locate your S/MIME certificate that is PKCS#12 or pfx format and then click the Open button.

  6. Enter the password you previously created to download your S/MIME certificate from SSL.com. Afterward, click the Sign in button.

  7. You should now be able to view the details of your S/MIME certificate on Certificate Manager. Click the OK button to proceed.
  8. Under the S/MIME section, click the Select… button to choose your certificate for digital signing and encryption.

  9. Click the OK button.

  10. A message box will appear with the content below. Click Yes to confirm that you will use the same certificate to encrypt your emails.

  11. The fields for digital signing and encryption will then be filled up with your certificate details.

  12. On the section Default settings for sending messages, you can select to enable/disable encryption for new messages and sign unencrypted messages. Once you have set your preferences, you are now ready to use your S/MIME certificate to sign and encrypt your emails in Thunderbird. 

Digitally Sign and Encrypt your Email in Mozilla Thunderbird

  1. Click the + New Message button.
  2. Compose your email, fill out the Subject field and then type the email address of the recipient. Upon placing the address of the contact, Thunderbird will notify you if encryption is possible. Click any of the Encrypt buttons in order to encrypt your email.
  3. Aside from encrypting, you can also digitally sign your email message by clicking the S/MIME tab and checking the Digitally Sign option.
  4. After setting your email message to be encrypted and/or signed, click Send. Thunderbird will then prompt you to confirm that you want to use your S/MIME certificate for encryption and/or signing. Click the OK button to confirm.

  5. Wait for Mozilla to send your email.
  6. If the recipient will also use Mozilla Thunderbird to view your email, the recipient will be able to see that your message has been signed and encrypted by clicking the S/MIME button.



Secure your email communications today with SSL.com S/MIME certificates. Protect sensitive information and enjoy peace of mind with authenticated emails.

BUY YOUR S/MIME CERTIFICATE

For more detailed information about S/MIME email, please see our article, Sending Secure Email with S/MIME.

Thank you for choosing SSL.com! If you have any questions, please contact us by email at Support@SSL.com, call 1-877-SSL-SECURE, or just click the chat link at the bottom right of this page. You can also find answers to many common support questions in our knowledgebase.

Subscribe To SSL.com’s Newsletter

Don’t miss new articles and updates from SSL.com

Stay Informed and Secure

SSL.com is a global leader in cybersecurity, PKI and digital certificates. Sign up to receive the latest industry news, tips, and product announcements from SSL.com.

We’d love your feedback

Take our survey and let us know your thoughts on your recent purchase.