Entrust Datacard

Entrust Certificate Services Support Knowledge Base

Last Modified: 2017-05-10 13:22:06.0

How do I install my Secure Email Certificate (S/MIME) on iOS  (Apple iPhone, iPad, iPod touch, iOS 5 or later)

Article Number: 70598

User-added image

Purpose: Secure Email (S/MIME) certificate installation guide
For Secure Email (S/MIME) certificate on iOS on Apple iPhone, iPad, iPod touch (iOS 5 or later)


User-added image

This installation is in three parts:
1) Importing S/MIME certificate to device
2) Sending digitally signed and encrypted email with device
3) Storing a contact's Secure Email certificate (S/MIME exchange)

Part 1 of 3: Importing S/MIME certificate to device

1. Select the link in your certificate pick-up email.

2. Allow the certificate file to be imported. Follow all prompts. Save the .p12 file to a memorable folder.

3. Once the .p12 file has been imported, you must install the certificate. After saving the file, you will be prompted again to open the file. If not, go to the folder where you saved it and open the file from there.

User-added image

4. You will be asked to provide a password to open the file. The password asked for is the password you use to log in to your device. Note that for iPhones, iPad or iPod touch devices you must have a passcode set up to access your device in order to use an S/MIME certificate. For instructions on how to set up a passcode please go to the Apple Support article here.

User-added image

5. Proceed with the installation. You will be asked to a enter a password. This password is the one you set up when ordering or creating (if you used an ECS Enterprise account) the certificate. Enter that password here.

User-added image

The certificate has been successfully imported and installed on the device.

User-added image

Part 2 of 3: Setting up S/MIME on device

1. You must enable the certificate for iOS Mail. Go to Settings > Mail

2. Under Accounts select the email account associated to the S/MIME certificate.

User-added image

3. On the next screen, under select your email address (or email address ID name).

User-added image


4. On the next screen, under select your email address.

User-added image

4. On the next screem under ADVANCED, select Mail.

User-added image

5. Scroll down and turn on S/MIME by sliding the slider to the on setting.

User-added image

6. Now you need to turn on digital signing and encryption. To enable digital signing, select Sign and then slide Sign to the on position. When you do so you should see a check mark appear beside the certificate on the list of certificates that appears below the button.

User-added image

7. To enable encryption, select Encrypt. You may slide to Encrypt by DefaultNote that turning on encryption here will automatically encrypt all email you send from this account, meaning not everyone will be able to read your emails (only email clients with S/MIME certificates can read encrypted email). However, to complete the installation process, have both Sign and Encrypt by Default set to Yes.

User-added image
8. If your Mail app is open close it by holding the home screen button, then swiping up on the Mail app.


Part 3 of 3: Storing a contact's Secure Email certificate (S/MIME exchange)

1. Open your Mail app.

2. Select to compose a new message.

3. You should now see a lock icon beside the To field.

User-added image

4. In order to send and receive encrypted mail with someone else, you must exchange public keys. Go back to your account settings and disable Encrypt by Default

5. Go back to Mail and compose a new message. The lock icon you saw in Step 3 will now appear as an unlocked padlock. Note that digital signing is still turned on. Compose a message to the person with whom you wish to exchange public keys. Advise them to add you as a contact and email you back with a digitally signed email so you can add them.

6. Upon receiving the digitally signed email, press on the From field to open the sender's profile.

User-added image

7. Select View Certificate.

User-added image

8. Now select Install.

You can now exchange Encrypted mail with that user. You must perform this action for every email address with which you wish to exchange encrypted email.

If you have any questions or concerns please contact the Entrust Certificate Services Support department for further assistance: 

Hours of Operation: 
Sunday 8:00 PM ET to Friday 8:00 PM ET 
North America (toll free): 1-866-267-9297 
Outside North America: 1-613-270-2680 (or see the list below) 
NOTE: It is very important that international callers dial the UITF format exactly as indicated. Do not dial an extra "1" before the "800" or your call will not be accepted as an UITF toll free call.

CountryNumber
Australia0011 - 800-3687-7863
1-800-767-513
Austria00 - 800-3687-7863
Belgium00 - 800-3687-7863
Denmark00 - 800-3687-7863
Finland990 - 800-3687-7863 (Telecom Finland)
00 - 800-3687-7863 (Finnet)
France00 - 800-3687-7863
Germany00 - 800-3687-7863
Hong Kong001 - 800-3687-7863 (Voice)
002 - 800-3687-7863 (Fax)
Ireland00 - 800-3687-7863
Israel014 - 800-3687-7863
Italy00 - 800-3687-7863
Japan001 - 800-3687-7863 (KDD)
004 - 800-3687-7863 (ITJ)
0061 - 800-3687-7863 (IDC)
Korea001 - 800-3687-7863 (Korea Telecom)
002 - 800-3687-7863 (Dacom)
Malaysia00 - 800-3687-7863
Netherlands00 - 800-3687-7863
New Zealand00 - 800-3687-7863
0800-4413101
Norway00 - 800-3687-7863
Singapore001 - 800-3687-7863
Spain00 - 800-3687-7863
Sweden00 - 800-3687-7863 (Telia)
00 - 800-3687-7863 (Tele2)
Switzerland00 - 800-3687-7863
Taiwan00 - 800-3687-7863
United Kingdom00 - 800-3687-7863
0800 121 6078
+44 (0) 118 953 3088