Using your digital signature in Mozilla Thunderbird for Windows: Разлика между версии
(Нова страница: == Before you proceed you must do == * If you have smart card reader and smart card from Infonotary, but you didn't install the drivers for them do the following [[Inst…) |
|||
| (Не са показани 15 междинни версии от 3 потребители) | |||
| Ред 1: | Ред 1: | ||
== Before you proceed you must do == | == Before you proceed you must do == | ||
* If you have smart card reader and smart card from | * If you have smart card reader and smart card from InfoNotary, but you didn't install the drivers for them do the following [[Installation of smart card reader and smart card drivers in Windows]] | ||
* '''IMPORTANT | * '''IMPORTANT :''' In the information message "Please enter the '''master password for InfoNotary'''", enter your PIN code. | ||
''' | * '''IMPORTANT :''' Firefox and Thunderbird use direct access to the smart card. When you have successfully installed your certificates, you '''SHOULD NOT''' delete them from there, as this will also delete the certificate, along with the private and public keys on the smart card. After that, the certificate cannot be restored and a new one must be issued. | ||
* '''IMPORTANT :''' In order to use your certificate with Firefox and Thunderbird, the reader must be on your computer before opening the program. | |||
== Install Infonotary certificate chain == | == Install Infonotary certificate chain == | ||
Start Mozilla Thunderbird. From | Start '''Mozilla Thunderbird'''. From the menu, select '''Options'''. | ||
[[Файл:Thunderbird1.png]] | |||
From '''Privacy & Security''' select '''Manage Certificates'''. | |||
[[Файл:Thunderbird2.png|750px]] | |||
Choose the tab '''Your certificates''' and click on '''Import'''. | |||
[[Файл:Thunderbird3.png|750px]] | |||
From the window that appears, select the pre-downloaded certification chain - [https://www.infonotary.com/site/files/InfoNotary_Qualified_eIDAS.p12 InfoNotary_Qualified_eIDAS.p12] | |||
[[Файл:Thunderbird4.png|500px]] | |||
Leave the field blank and click '''OK'''. | |||
[[Файл:Thunderbird5.png]] | |||
Newly installed certificates can be found in section '''Authorities'''. | |||
[[Файл:Thunderbird6.png|750px]] | |||
In Mozilla for every certificate of a Certification Authority (CA) the user must choose a level of trust. This is done by selecting the certificate and clicking on '''Edit Trust'''. The easiest way to do this setting for the certificate <!--"'''InfoNotary CSP Root'''" and/or -->"'''InfoNotary TSP Root'''" select two possible options. This will make all the InfoNotary trusted certificates for all operations. | |||
{{ | [[Файл:Thunderbird7.png]] | ||
<!--From here the process is analogical for all Mozilla applications. | |||
{{Шаблон:Installation_of_Infonotary_Certificate_Chain_for_Mozilla_applications}}--> | |||
== Install software security module == | == Install software security module == | ||
[[ | Start '''Mozilla Thunderbird'''. From the menu, select '''Options'''. | ||
[[Файл:Thunderbird1.png]] | |||
From '''Privacy & Security''', choose '''Security Devices'''. | |||
[[Файл:Thunderbird8.png|750px]] | |||
To add a new device, choose '''Load'''. | |||
[[Файл:Thunderbird9.png|750px]] | |||
Change the name of the module (Module Name), as desired. | |||
[[Файл:Thunderbird10.png]] | |||
Select PKCS # 11 library corresponding to your smart card. | |||
* '''IDPrime''' - C:\WINDOWS\system32\eTPKCS11.dll | |||
* '''Siemens''' - C:\WINDOWS\system32\siecap11.dll | |||
* '''Charismathics''' - C:\WINDOWS\system32\cmP11.dll | |||
* '''Bit4id''' - C:\WINDOWS\system32\bit4ipki.dll | |||
In case you use 64 bits version of Firefox or Thunderbird and Charismathics smart card, path to library is C:\WINDOWS\system32\cmP1164.dll. | |||
After you click '''OK''', your smart card will appear in the list of available devices. | |||
[[Файл:Thunderbird11.png|750px]] | |||
==Configuring use profile in Thunderbird== | |||
In order for you to sign your outgoing mails, you have to associate your account with your digital signature on your smart card. To do this follow the steps below: | |||
From the menu, select '''Account Settings'''. | |||
[[Файл:Thunderbird12.png]] | |||
Press the '''Select''' button on "Personal certificate for digital signing" and "Personal certificate for encryption" | |||
[[Файл:Thunderbird13.png|750px]] | |||
A window will appear where you can specify your certificate. | |||
[[Файл:Thunderbird14.png]] | |||
Choose the appropriate certificate from the smart card and confirm by clicking '''OK'''. | |||
Thunderbird will offer you to choose the same certificate for decrypting messages send to you. | |||
{{ | <!--{{Шаблон:Configuring_user_profile_in_Thunderbird}}--> | ||
Текуща версия към 09:20, 19 юли 2023
Before you proceed you must do
- If you have smart card reader and smart card from InfoNotary, but you didn't install the drivers for them do the following Installation of smart card reader and smart card drivers in Windows
- IMPORTANT : In the information message "Please enter the master password for InfoNotary", enter your PIN code.
- IMPORTANT : Firefox and Thunderbird use direct access to the smart card. When you have successfully installed your certificates, you SHOULD NOT delete them from there, as this will also delete the certificate, along with the private and public keys on the smart card. After that, the certificate cannot be restored and a new one must be issued.
- IMPORTANT : In order to use your certificate with Firefox and Thunderbird, the reader must be on your computer before opening the program.
Install Infonotary certificate chain
Start Mozilla Thunderbird. From the menu, select Options.
From Privacy & Security select Manage Certificates.
Choose the tab Your certificates and click on Import.
From the window that appears, select the pre-downloaded certification chain - InfoNotary_Qualified_eIDAS.p12
Leave the field blank and click OK.
Newly installed certificates can be found in section Authorities.
In Mozilla for every certificate of a Certification Authority (CA) the user must choose a level of trust. This is done by selecting the certificate and clicking on Edit Trust. The easiest way to do this setting for the certificate "InfoNotary TSP Root" select two possible options. This will make all the InfoNotary trusted certificates for all operations.
Install software security module
Start Mozilla Thunderbird. From the menu, select Options.
From Privacy & Security, choose Security Devices.
To add a new device, choose Load.
Change the name of the module (Module Name), as desired.
Select PKCS # 11 library corresponding to your smart card.
- IDPrime - C:\WINDOWS\system32\eTPKCS11.dll
- Siemens - C:\WINDOWS\system32\siecap11.dll
- Charismathics - C:\WINDOWS\system32\cmP11.dll
- Bit4id - C:\WINDOWS\system32\bit4ipki.dll
In case you use 64 bits version of Firefox or Thunderbird and Charismathics smart card, path to library is C:\WINDOWS\system32\cmP1164.dll.
After you click OK, your smart card will appear in the list of available devices.
Configuring use profile in Thunderbird
In order for you to sign your outgoing mails, you have to associate your account with your digital signature on your smart card. To do this follow the steps below:
From the menu, select Account Settings.
Press the Select button on "Personal certificate for digital signing" and "Personal certificate for encryption"
A window will appear where you can specify your certificate.
Choose the appropriate certificate from the smart card and confirm by clicking OK.
Thunderbird will offer you to choose the same certificate for decrypting messages send to you.