Purpose: Secure Email (S/MIME) certificate installation guide
For Secure Email (S/MIME) certificate on iOS on Apple iPhone, iPad, iPod touch (iOS 5 or later)
This installation is in three parts:
1) Importing S/MIME certificate to device
2) Sending digitally signed and encrypted email with device
3) Storing a contact's Secure Email certificate (S/MIME exchange)
Part 1 of 3: Importing S/MIME certificate to device
1. Select the link in your certificate pick-up email.
2. Allow the certificate file to be imported. Follow all prompts. Save the .p12 file to a memorable folder.
3. Once the .p12 file has been imported, you must install the certificate. After saving the file, you will be prompted again to open the file. If not, go to the folder where you saved it and open the file from there.
4. You will be asked to provide a password to open the file. The password asked for is the password you use to log in to your device. Note that for iPhones, iPad or iPod touch devices you must have a passcode set up to access your device in order to use an S/MIME certificate. For instructions on how to set up a passcode please go to the Apple Support article here.
5. Proceed with the installation. You will be asked to a enter a password. This password is the one you set up when ordering or creating (if you used an ECS Enterprise account) the certificate. Enter that password here.
The certificate has been successfully imported and installed on the device.
Part 2 of 3: Setting up S/MIME on device
1. You must enable the certificate for iOS Mail. Go to Settings > Mail
2. Under Accounts select the email account associated to the S/MIME certificate.
3. On the next screen, under select your email address (or email address ID name).
4. On the next screen, under select your email address.
4. On the next screen under ADVANCED, select Mail.
5. Scroll down and turn on S/MIME by sliding the slider to the on setting.
6. Now you need to turn on digital signing and encryption. To enable digital signing, select Sign and then slide Sign to the on position. When you do so you should see a check mark appear beside the certificate on the list of certificates that appears below the button.
7. To enable encryption, select Encrypt. You may slide to Encrypt by Default. Note that turning on encryption here will automatically encrypt all email you send from this account, meaning not everyone will be able to read your emails (only email clients with S/MIME certificates can read encrypted email). However, to complete the installation process, have both Sign and Encrypt by Default set to Yes.
8. If your Mail app is open close it by holding the home screen button, then swiping up on the Mail app.
Part 3 of 3: Storing a contact's Secure Email certificate (S/MIME exchange)
1. Open your Mail app.
2. Select to compose a new message.
3. You should now see a lock icon beside the To field.
4. In order to send and receive encrypted mail with someone else, you must exchange public keys. Go back to your account settings and disable Encrypt by Default.
5. Go back to Mail and compose a new message. The lock icon you saw in Step 3 will now appear as an unlocked padlock. Note that digital signing is still turned on. Compose a message to the person with whom you wish to exchange public keys. Advise them to add you as a contact and email you back with a digitally signed email so you can add them.
6. Upon receiving the digitally signed email, press on the From field to open the sender's profile.
7. Select View Certificate.
8. Now select Install.
You can now exchange Encrypted mail with that user. You must perform this action for every email address with which you wish to exchange encrypted email.
If you have any questions or concerns please contact the Entrust Certificate Services Support department for further assistance:
Hours of Operation:
Sunday 8:00 PM ET to Friday 8:00 PM ET
North America (toll free): 1-866-267-9297
Outside North America: 1-613-270-2680 (or see the list below)
NOTE: It is very important that international callers dial the UITF format exactly as indicated. Do not dial an extra "1" before the "800" or your call will not be accepted as an UITF toll free call.
|Australia||0011 - 800-3687-7863|
|Austria||00 - 800-3687-7863|
|Belgium||00 - 800-3687-7863|
|Denmark||00 - 800-3687-7863|
|Finland||990 - 800-3687-7863 (Telecom Finland)|
00 - 800-3687-7863 (Finnet)
|France||00 - 800-3687-7863|
|Germany||00 - 800-3687-7863|
|Hong Kong||001 - 800-3687-7863 (Voice)|
002 - 800-3687-7863 (Fax)
|Ireland||00 - 800-3687-7863|
|Israel||014 - 800-3687-7863|
|Italy||00 - 800-3687-7863|
|Japan||001 - 800-3687-7863 (KDD)|
004 - 800-3687-7863 (ITJ)
0061 - 800-3687-7863 (IDC)
|Korea||001 - 800-3687-7863 (Korea Telecom)|
002 - 800-3687-7863 (Dacom)
|Malaysia||00 - 800-3687-7863|
|Netherlands||00 - 800-3687-7863|
|New Zealand||00 - 800-3687-7863|
|Norway||00 - 800-3687-7863|
|Singapore||001 - 800-3687-7863|
|Spain||00 - 800-3687-7863|
|Sweden||00 - 800-3687-7863 (Telia)|
00 - 800-3687-7863 (Tele2)
|Switzerland||00 - 800-3687-7863|
|Taiwan||00 - 800-3687-7863|
|United Kingdom||00 - 800-3687-7863|
0800 121 6078
+44 (0) 118 953 3088