Generate your own signing certificate

If the services on your network require more than a few self-signed certificates, it may be worth the additional effort to create an S/MIME Secure Multipurpose Internet Mail Extensions (S/MIME) is a specification for secure email messages that uses the X.509 format for digital certificates and uses various encryption algorithms such as 3DES. signing certificate The certificate of the certificate authority that signed the key certificate. It contains the certificate authority's own public key. Also known as "root certificate". for your own internal Certification Authority (CA). Using certificates signed by your own CA allows the various services using the certificates to easily trust other services using certificates issued from the same CA.

1. Navigate to System > Encryption and click Certificate Store.
2. In the Task panel, click Generate certificate A digital means of proving your identity. When you send a digitally-signed message, you are sending your certificate and public key. Certificates are issued by a certification authority and can expire or be revoked./key.
3. In the Generate New Certificate or Key dialog, select Certificate Authority from the Type list.

4. Follow the instructions on screen and make the other selections that you need.

   What do I need to know?

   • Type only ASCII printable characters in the text boxes.
   • Mouse over the pink Required text boxes to display tooltips for those fields.
5. Click Generate.

6. Apply the configuration.

   Your signing certificate appears under the Certificate Authorities tab in the Certificate Store. You can now go on to generate and self-sign private S/MIME keys.

See also...

• View and enable signing certificates
• Generate S/MIME or PGP private key

• Apply new configuration