English
Chinese
French
German
Italian
Japanese
Russian
Spanish
Subscriptions
RSS feedsResolution
In HSPC you can setup email S/MIME signing for all automatically created emails.
For that purpose you need to have valid certificate for S/MIME signing.
If you already have required certificate you need to proceed following steps:
1. First of all you need to convert your certificate to PEM format (if needed) and create private key for certificate.
There are variety of tools and methods for achieving this, you can use any of them.
Here an example for .p12 (PKCS#12 files, sometimes referred to as PFX files) goes:
Import all certificates to PEM format from cert.p12 file and create private key for them:
# openssl pkcs12 -in cert.p12 -nodes -out server.crtUse password that your issuer provide to you, if you would be asked.
Now, from the beginning of the server.crt file private key is located, it looks like:
Bag Attributes
friendlyName: ...
localKeyID: ...
Key Attributes: ...
-----BEGIN RSA PRIVATE KEY-----
...
-----END RSA PRIVATE KEY-----
you need to move this key part to another file (for example server.key)
Now you have your certificates are located in server.crt file, key in server.key file.
2. Please, check if your certificate is valid for S/MIME signing.
# openssl verify -verbose -purpose smimesign -CAfile cert.ca cert.cl
cert.cl: OK
where
cert.ca -- file with CA certificates;
cert.cl -- file with client certificate.
If you have another (not OK) result, please check verify manual for error codes explanations.
3. Install your certificate at "Top > Configuration Director > Miscellaneous Settings > E-Mail Setup" click on the "Edit" button, check "Sign all e-mail messages" and specify certificate and private key filenames.