Skip to content

S/MIME Support

BlueMail offers robust S/MIME (Secure/Multipurpose Internet Mail Extensions) support, allowing you to send and receive digitally signed and encrypted emails. This ensures both the authenticity and confidentiality of your communications.

Note: S/MIME functionality is exclusively available as part of the BlueMail Enterprise package.

Enabling S/MIME in BlueMail

To get started with S/MIME, you first need to add your digital certificate to BlueMail.

  1. Open BlueMail.
  2. Navigate to Settings.
  3. Go to Privacy & Security.
  4. Select S/MIME.

From here, you will be prompted to add your certificate. BlueMail supports .pfx and .p12 file formats for certificates.

Adding Your Certificate

  1. Tap on Add Certificate.
  2. Locate your .pfx or .p12 file on your device.
  3. Enter the password associated with your certificate when prompted.
  4. Once added, BlueMail will automatically configure it for the corresponding email account.

Your certificate will now appear in the list of available S/MIME certificates, ready to be used for signing and encrypting emails.

Sending a Signed or Encrypted Email

With your certificate installed, you can easily sign or encrypt your outgoing messages.

  • To Sign an Email: When composing a new email, tap the three-dot menu and select Sign. A signature icon will appear, indicating the email will be sent with your digital signature. This verifies to the recipient that the email is from you and has not been tampered with.

  • To Encrypt an Email: To send an encrypted email, you must have the recipient's public key (their certificate). BlueMail automatically extracts and saves public keys from incoming signed emails. When composing, tap the lock icon. If you have the recipient's public key, the email will be encrypted.

What Do the S/MIME Icons Mean?

When you receive an email that uses S/MIME, you will see icons indicating its status:

  • Blue Checkmark: The email is successfully signed, and the sender's identity is verified.
  • Red Lock: The email is encrypted, ensuring its contents are confidential.

Troubleshooting Common Issues

"Certificate Not Trusted" This error occurs if the certificate was issued by an untrusted authority or is self-signed. To resolve this, you may need to install the root certificate of the Certificate Authority (CA) on your device.

"Unable to Find Recipient's Certificate for Encryption" You can only send an encrypted email to someone if you have their public certificate. Ask the recipient to send you a digitally signed email first. BlueMail will automatically add their certificate to your keychain, allowing you to send them encrypted messages in the future.

"Invalid Password for Certificate" Ensure you are entering the correct password for your .pfx or .p12 file. These passwords are case-sensitive. If you have forgotten the password, you will need to obtain a new certificate file from your provider.