This article is no longer maintained, so its content might be out of date.
Certificates are the digital equivalent of identity cards. They are used to encrypt and decrypt information transferred between sites. Certificates are configured on the At the top of the Thunderbird window, click the menu and select In the menu bar, click the menu and select At the top of the Thunderbird window, click the , or click the menu button menu and select and choose . The following options are available:panel under the tab.
- When a server requests my personal certificate: Some servers ask you to identify yourself with a personal certificate. In order to do so, they ask Thunderbird to generate one for you. When you connect to the server in the future, Thunderbird will ask you for which certificate to use. If you wish to have Thunderbird automatically choose a certificate, select the Select one automatically optionpreference. Note: A personal certificate can contain personal identity information, such as your name or address. It may therefore compromise your privacy if you select the Select one automatically optionpreference, because you will not be alerted when a website requests your personal certificate. Therefore, you may lose the ability to control who can access your personal information.
- Query OCSP responder servers to confirm the current validity of certificates: Thunderbird may ask an OCSP (Online Certificate Status Protocol) server to confirm that a certificate is still valid. By default, Thunderbird validates a certificate if the certificate provides an OCSP server. You will most likely only need to change this if your Internet environment requires it.
- : Click this button to load the Certificate Manager, where you can view stored certificates, import new certificates, and back up or delete old certificates.
- : Thunderbird can use Certificate Revocation Lists (also known as CRLs) to ensure that your certificates are valid. Click the button to manage the CRLs installed on your computer.
- optionspreferences. : Thunderbird may ask an Online Certificate Status Protocol (OCSP) server to confirm that a certificate is still valid. By default, Thunderbird validates a certificate if the certificate provides an OCSP server. Alternatively, you can choose an OCSP server against which to validate all certificates. Click the button to manage these
- : Security devices can be used to encrypt and decrypt connections and store certificates and passwords. If you need to use a security device, click the button.