emSign Knowledge Base
  • emSign
  • Getting Started
    • About emSign
    • Why emSign?
    • Key Highlights
      • Root Store Listings
      • Trust
      • Security
    • Certificate Lifecycle and Key Management Platform (CERTInext)
  • emSign CERTInext
    • Overview
    • Getting Started
      • Enterprise Sign up
      • Partner Sign up
      • Retail Customers
      • Multi-factor & Trusted login
        • Multifactor Authentication and Single Sign On
        • Enforce 2FA
        • IP Restrictions
        • Digital Certificate based login
      • Alerts and Notifications
    • User and Group Management
    • Ordering a Certificate
      • As a Customer
        • DV certificates
        • OV Certificates
        • EV Certificates
        • SMIME Certificates
        • Intranet SSL Certificate
        • IGTF Certificates
        • Subscription Plan Coverage for SSL Products
        • Group-based Certificates Ordering
        • Ordering using Custom Fields
      • As a Partner
        • Order for Customers
        • Order for Sub-accounts
      • Requester Approval Workflows
        • EV requests by Authorized Signatory
        • Certificate requests by Administrator
      • Submitting a Certificate Signing Request (CSR)
        • Submit CSR for Pending Orders
        • Replace CSR for Pending Orders
      • Downloading Certificates
        • Download Interim DV
        • Download Certificate
      • Post Order Actions
        • Renew Certificate
        • Revoke an issued Certificate
        • Reissue Certificate
        • Add / Remove SANs for Multi-Domain SSL
    • Management
      • Domains
      • Organizations
      • Orders
      • Products
      • Templates
        • CSR Templates
        • Provisioning Templates
    • Integrations
      • Using APIs to Order
        • REST APIs
        • ACME APIs
      • Tools
        • eMudhra Certificate Utility Tool
        • eMudhra emSign Click Tool
          • Procedure for installing Certificate in HSM
          • Procedure for Attested CSR Generation
      • CA Connectors
    • Billing & Payments
      • Add Credits
      • Invoices
      • Statement (Ledger Statement)
      • Product Price List
    • Reports
      • Orders Report
      • Overall Statistics
      • Certificates Report
      • Key Store Report
      • Key Report
      • Sales Summary
      • Audit Logs
    • Settings
      • Reporting Tags
      • Manage Schedules
      • Custom Fields
    • Certificate Lifecycle Management
      • Discover Certificates
      • emSign CERTInext Bot
    • Key Lifecycle Management
      • Manage Keys
      • Key Profiles
      • Key Store
  • Consent Management
  • Certificate Approval Process
    • Domain Validation (DV) Process
    • Organization Validation (OV) Process
    • Extended Validation (EV) Process
    • User Certificates Process
    • SMIME Certificate Process
    • Qualified Sources
  • Certificate Installation
    • Before you install
    • Browser Compatibility
    • emSign's Security Seal
    • Installing SSL Certificate on IIS
    • Installing SSL Certificate on cPanel
    • Installing SSL Certificate on Amazon Web Services (AWS)
    • Installing SSL Certificate on Apache
    • Installing SSL Certificate on Plesk 12
    • Installing SSL Certificate on NGINX
    • Installing SSL Certificate on Google App Engine
    • Installing SSL Certificate on WHM
    • Installing SSL Certificate on Ubuntu
    • Installing SSL Certificate on Tomcat
    • Installing SSL Certificate on Heroku
    • Installing SSL Certificate on Bigcommerce
    • Installing Root & Intermediate Certificates for Intranet SSL
    • Supported Devices for auto-provisioning of certificates
    • SSL/TLS Server Rating Guide
  • Release Notes
    • Introduction
    • R1619 (07-Apr-2025)
    • R1591 (10-Mar-2025)
    • R1581 (28-Feb-2025)
    • R1553 (31-Jan-2025)
    • R1522 (31-Dec-2024)
    • R1490 (29-Nov-2024)
    • R1460 (30-Oct-2024)
    • R1427 (27-Sep-2024)
    • R1371 (02-Aug-2024)
    • R1354 (16-Jul-2024)
    • R1300 (23-May-2024)
    • R1251 (04-Apr-2024)
    • R1230 (14-Mar-2024)
    • R1196 (09-Feb-2024)
    • R1167 (11-Jan-2024)
    • R1152 (27-Dec-2023)
    • R1139 (14-Dec-2023)
    • R1124 (29-Nov-2023)
    • R1115 (20-Nov-2023)
    • R1101 (06-Nov-2023)
    • R1075 (11-Oct-2023)
    • R1062 (28-Sep-2023)
    • R1046 (12-Sep-2023)
    • R1039 (05-Sep-2023)
    • R1031 (28-Aug-2023)
    • R1024 (21-Aug-2023)
    • R1001 (29-Jul-2023)
Powered by GitBook

© eMudhra. All Rights Reserved.

On this page

Was this helpful?

Export as PDF
  1. Certificate Approval Process

SMIME Certificate Process

S/MIME Certificates elevates the security of your email communications ensuring the authenticity, confidentiality, and integrity of your messages, safeguarding sensitive information from unauthorized access and tampering.

Types of SMIME Certificates

1. SMIME Simple - Mailbox Validated: SMIME Simple Certificate Process is simple & fully automated. The Subject is limited to Email Address.

  • Validation Process: Email-link based verification to prove the control over the email address. emSign sends an email verification link to certificate holder's email.

  • Issuance Time: Shorter issuance time. Issuance in minutes.

2. SMIME Personal - Individual Validated: SMIME Personal Certificate Process is simple & issuance is subject to an individual verification. The Subject includes only individual (natural person) attributes.

  • Validation Process: Identity and Address validation of an individual through online KYC and email verification to prove control over the email. Validation of a physical identity document (Physical Document + Video Recording).

  • Issuance Time: Typically, issuance in minutes. For exceptional cases, issuance would take in hours.

3. SMIME Professional - Sponsor Validated: Unlike SMIME Personal certificates, Professional certificates require the certificate request to undergo organization verification process to confirm the identity, address and organization identifier of their organization. It is the most common type of S/MIME certificate, often issued by an Enterprise to its employees. The Subject includes organization details as well as attributes of a ‘sponsored’ individual.

  • Validation Process: SMIME Sponsor Validated process includes the following,

    • Full legal name & registered assumed name of the entity

    • Address of the legal entity

    • Jurisdiction of Incorporation or Registration of the legal entity

    • Unique Organization Identifier (e.g.: VAT, LEI)

    • Association/Authority of an entity/organization representative

    • Mailbox Validation either through an email verification link or One-time DCV of an email domain, similar to SSL

    • NOTE: For Sponsor individual identity verification, enterprise RA can rely upon existing internal records.

  • Issuance Time: Longer issuance time compared to Personal Certificates. Typically, issuance in Hours. For exceptional cases, issuance would take 1-5 Business days.

4. SMIME Corporate - Organization Validated: Unlike SMIME Personal certificates, Corporate certificates require the certificate request to undergo organization verification process to confirm the identity, address and organization identifier of their organization. The Subject includes organization details (legal entity).

  • Validation Process: SMIME OV process includes the following,

    • Full legal name & registered assumed name of the entity

    • Address of the legal entity

    • Jurisdiction of Incorporation or Registration of the legal entity

    • Unique Organization Identifier (e.g.: VAT, LEI)

    • Association/Authority of an entity/organization representative

    • Mailbox Validation either through an email verification link or One-time DCV of an email domain, similar to SSL

  • Issuance Time: Longer issuance time compared to Personal Certificates. Typically, issuance in Hours. For exceptional cases, issuance would take 1-5 Business days.

PreviousUser Certificates ProcessNextQualified Sources

Last updated 9 months ago

Was this helpful?