DigiCert S/MIME Class 2

Domain Control & Business Validation
Secures email communications

Ideally for	Email
Brand	Digicert, Symantec
Issue time	10 minutes
Secures	Email / Documents
Validation Requirements	Domain Control, Identity Verification, Organization Validation
Certificate Fields	Company Name, [email protected], First Name, Last Name
Email Encryption & Signing	Yes
Document Signing	Yes
User Authentication	No
Secure Hash Algorithm	SHA-2
Key Encryption	2048 bit
Certificate Encryption	Up to 256-bit

Digicert S/MIME Class 2 is an easy, affordable, and excellent solution to secure business email communications. This SSL Certificate digitally signs and encrypts email messages using the S/MIME protocol, which verifies the sender and prevents tampering, allows access to specific applications, websites, or interfaces, as well as devices like laptops and cellphones, and provides enhanced security if usernames and passwords are misplaced or stolen.

Email Encryption

DigiCert S/MIME Class 2 digitally signs your emails and enables end-to-end encryption between you and your recipients. Once you hit the “send” button, you’ll have peace of mind that no attacker will intercept your confidential messages. Breaking the 256-bit encryption and a 2048-bit signature key is beyond human capabilities.

Document Signing

Along with emails, this certificate can also secure Microsoft® Office and OpenOffice business documents. It will also ease the transition from ink paperwork to digital workflows. By applying the digital signature to a document, you’ll ensure its authenticity and prevent hackers from altering it.

User two-factor authentication

Digicert S/MIME Class 2 is used for two-factor authentication. Once a server is configured for client certificate authentication, it will only grant a user access to it if the client presents the correct client certificate. When using a web browser to connect to the server, without the correct client certificate, the client cannot even access the credentials page.

FDA ESG compliant

If you’re doing business with the FDA (Food and Drug Administration), encrypting your emails is required. The ESG (Electronic Submission Gateways) verifies the senders’ identity before sending your email to the relevant FDA office. This email certificate ensures smooth and secure communication with the FDA.

Domain Control, Identity Verification, and Organization Validation

This email certificate offers the highest level of validation to emails and digital documents. After validation, your company address and company name will appear in the certificate fields along with your first and last names.

Compatible with almost any platform

Digicert email certificates are fully trusted by all major servers, email clients, as well as internet browsers. You can install them on Windows, Linux, Mac, and many other platforms. They also support major email servers such as Netscape Communicator, Microsoft Outlook, Microsoft Exchange, and Mozilla Thunderbird.

Here is a list of the most common questions our customers have when buying a DigiCert S/MIME SSL Certificate:

How to pass OV for S/MIME Class 2?

Here are the steps that you need to do in order to pass OV (Organization Validation) for your S/MIME Class 2 email SSL Certificate:

Open a ticket with us and let us know the following info:

A. Your Company Info:

Legal Company Name
Organization Phone Number – This should be a number that can be verified against an online third-party address listing (e.g. Google business). DigiCert will call your verified organization phone number to confirm your organization for your SSL.
Company Address – Address, City, State, Country, Zip Code

B. Your Company Contact Info:

First Name
Last Name
Email
Phone Number

C. The Email address, First Name, and Last Name the SSL will be issued for.

What are Multi-Year SSLs?

What are Multi-Year SSL Subscription Plans?

Starting with August 19th, 2020, the maximum duration of publicly-trusted SSL/TLS certificates issued by all Certificate Authorities (CAs) has been set to a maximum of 13 months.

However, in order to make your SSL Management process time-saving and cost-effective, the CAs and SSL Dragon are offering you the 2 Year and 3 Year SSL Subscription Plans.

This means that you can still buy a 2 or 3 year SSL Certificate and continue to benefit from multi-year discounting, while still remaining compliant with the CAB Forum SSL requirements.

How the Multi-Year SSL works?

Due to security reasons, your SSL certificate is initially issued with a maximum 1-year validity.

30 days before the expiration of your certificate, SSL Dragon, on behalf of the CA, will notify you and ask you to reissue your SSL, in order to get the additional (replacement) 1-year certificate, according to your Subscription Plan.

This FAQ explains to you how to reissue your SSL Certificate, step by step.

You will need to validate & install the replacement SSL:

a. If you have a Domain Validation SSL Certificate, a short verification of your domain name will be required via Email, HTTP, or DNS in order to issue the 1-yr replacement SSL.

b. If you have a Business or Extended SSL Certificate – an additional Business Validation/Extended Validation recheck and callback process will also be required.

You can still reissue your certificate at any time and as many times as you like during your Multi-Year SSL Subscription Plan.

On your SSL Certificate’s page within the SSL Dragon account, you will find all the details regarding your Subscription Plan:

Valid From – Shows the date when your SSL was issued and became active
Expires – Shows the date when your SSL expires and needs to be reissued (not Renewed).
Subscription Starts – The date when the first SSL was issued and the subscription period activated
Subscription Ends – The date when the subscription ends and SSL needs to be Renewed (not Reissued)
Next Reissue – shows the number of days left of your SSL. The Certificate should be reissued 30-days prior to this date.

Server and Client OS Compatibility

ClientOS Windows 7, Vista, XP, 2000, Snow Leopard, Mac OS

Server Platforms And Mobile Browser Compatibility

Server Platforms:

BEA Weblogic
IBM HTTP Server
Microsoft ISA
Microsoft IIS
Microsoft SQL Server 2005
Microsoft Live Communication
Apache
BEA Weblogic
Lotus Domino
OpenLDAP
C2Net Stronghold
Plesk
WebSTAR
Webmin
Java Web Server (Javasoft / Sun)
Ensim Control Panel
cPanel / Web Host Manager
Hsphere
C2Net Stronghold
iPlanet Server / Sun One
Java Web Server (Javasoft / Sun)
Lotus Domino
Tomcat
Netscape Enterprise Server
Novell ConsoleOne
Novel Webserver
C2Net Stronghold
And other SSL-Capable Servers

Email Clients:

Lotus Notes (6+)
Microsoft Outlook 99+
Mozilla Thunderbird 1.0+
Mail.app (Mac OS X)v
Microsoft Entourage (OS/X)
Microsoft Outlook Express 5+
The Bat 1+
Qualcomm Eudora 6.2+
Windows Mail 1.0+ (Vista)

Need help securing your website? Have questions, or unsure which SSL to choose? Let our fearless dragons help you! Follow the following steps towards getting the type of help that you need.

1. Use our Wizard and find the SSL Certificate that suits you best;

2. Find your answers on our Frequently Asked Questions page;

3. Open a Ticket with our Sales, Billing and Technical Support dragons. We will answer your ticket as soon as possible. We work Monday through Saturday, from 9 AM to 11:00 PM Pacific Time;

4. Email us using our Contact Form.

NEW