Self-service Globalsign S/MIME certificates

University of Waterloo has selected GlobalSign to provide personal S/MIME client certificates. These certificates are used to sign and/or encrypt emails. 

Note: Both the sender and receiver of an email must have previously exchanged public keys in order to send encrypted email. For most clients, it is sufficient for one party to send a signed email, then the recipient to respond to that email with a signed email.

Requesting a Certificate

See How to request and download a GlobalSign S/MIME certificate for illustrated instructions on how to request an S/MIME certificate.

Retrieving Your Certificate

When your request has been approved, you will receive an email to pickup your certificate. You will need to enter the pickup password from the request stage. Following this, you will need to enter a certificate password. This password is used for your certificate to sign and decrypt emails, you must save this password or your certificate will be unusable, and you will not be able to decrypt messages sent with that certificate or to encrypt new ones.

Installing Your Certificate

Once you have received your certificate, you will need to configure your mail client to use it. The instructions vary by platform.