Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

How to see server certificate?

  • 7 replies
  • 4 have this problem
  • Last reply by BatManuel

more options


How can I see the certificate for the email servers (imap, pop, smtp)? I don't see anything in the account settings. Am I missing something?

Thank you!

All Replies (7)

more options


Modified by Zenos

more options

I went there and I clicked on "Manage certificates". All I can see are expired certificates and not even one from my mail servers.

more options
Am I missing something?

No. I don't think you can check the actual server cert with Thunderbird, unless there is an error. In that case you do get an exception prompt, and can inspect the problematic cert.

You may look for an extension on AMO giving you access to the server certs.

Beyond that see

more options

Unfortunately, I did not find any extension doing it. It seems people are asking for such feature since 2007.

more options

I am curious, why would you want to actually view the certificate offered?

If I wish to "test" a server I use this site

more options

Yes, I'm using this website :) but it takes time as it check many things (cipher suites, and so on) and fails in some cases.

I see many reasons: To check until when the certificate is valid, if it changed, what is the CA, the fingerprints, the object, the alternative names, the encryption algorithm, the key length, etc.

Thunderbird is checking it each times anyway when initiate TLS or StartTLS connections, so I'd like to be able to see it.

With Firefox, It takes 4 clicks to view the certificate. I use it all the time to (double) check if the new certificate was properly take into account. I would like to be able to do the same with Thunderbird.

Modified by Analogue

more options

I have the same issue, I spent way too much time looking for this and to be honest, I am surprised that it's not possible. I had to resort to using openssl to view the certificate.

It's really bad that everything security is being gradually hidden from the users.