
Can't select my security cert from cert manager to use as a signing cert
I have my signing cert already in Win 10. Thunderbird sees it. However there seems to be no obvious way to select the cert to use as a signing cert. When I open cert manager, there is no button to make it the signing cert. When pressing the button to select a cert on the long horizontal white dialog line to select a signing cert it says no cert found. I already imported the cert into Windows so I could have a centrally managed system instead of micromanaging each program. Surely Thunderbird wouldn't make me go through a whole second process of importing and setting up of email signing? There's got to be a way to make use of Windows centralized cert management. Other programs do. Outlook does among others.
I've included two screenshots to show what I mean.
Chosen solution
I have my signing cert already in Win 10.
Thunderbird does not use the windows certificate store in any way shape or form. So you best place the certificate into the Thunderbird certificate store.
Thunderbird sees it.
No it does not.
See the tab "your certificates". That is where a valid signing certificate is found. The "People" tab is where certificates received on incoming mail and to be used for the decryption of incoming s/mime messages goes.
It is probably a good idea to make sure your anti virus is not set as a certifying authority in either store as well. Nothing like having a open backdoor into the encrypted communication you have set up, which is what making the anti virus a CA does.
Read this answer in context 👍 0All Replies (1)
Chosen Solution
I have my signing cert already in Win 10.
Thunderbird does not use the windows certificate store in any way shape or form. So you best place the certificate into the Thunderbird certificate store.
Thunderbird sees it.
No it does not.
See the tab "your certificates". That is where a valid signing certificate is found. The "People" tab is where certificates received on incoming mail and to be used for the decryption of incoming s/mime messages goes.
It is probably a good idea to make sure your anti virus is not set as a certifying authority in either store as well. Nothing like having a open backdoor into the encrypted communication you have set up, which is what making the anti virus a CA does.