SecurityWorkCentre 5300 Series Multifunction PrinterSystem Administrator Guide60S/MIMESecure/Multipurpose Internet Mail Extensions (S/MIME) is a standard for public key encryption andsigning of email encapsulated in MIME.Before you begin:• Enable SSL/TLS. For details, see Configuring Secure HTTP and SSL/TLS Settings on page 59.• If an S/MIME-capable self-signed certificate is not available, install an S/MIME certificate and allcertificates in the certification path (chain of trust) for the S/MIME certificate. The S/MIMEcertificate must be in PKCS #12 format, and the email address in the certificate must be the sameas the printer’s email address. For details, see Managing Certificates on page 57.• Enable S/MIME Communication on the SSL/TLS Settings page. For details, see Configuring SecureHTTP and SSL/TLS Settings on page 59.Configuring S/MIME Settings1. In CentreWare IS, click Properties > Security > S/MIME Settings.2. Under S/MIME Settings, next to Message Digest Algorithm, select SHA1, or MD5.3. Next to Message Encryption Method, select 3DES, RC2-40, RC2-64, or RC2-128.4. Next to Certificate Auto Store, select Enabled to allow the printer to automatically store a user’sdigital certificate when the printer receives a digitally signed email.5. Under E-mail, next to Receive Untrusted E-mail, select Enabled to allow the printer to receive anemail from a user whose digital certificate is not in the printer’s chain of trust, or from a user thatdoes not have a digital certificate.6. Next to Digital Signature - Outgoing E-mail, select Select during send, to allow users tomanually choose to sign an outgoing email using the user’s digital signature, or the printer’sdigital signature. Select Always add signature to use the setting specified at the control panel, orselect Do not add signature.Note: To specify the certificate at the control panel, press the Machine Status button, and touchthe Tools tab. Touch System Settings > Connectivity & Network Setup > Security Settings >S/MIME Settings. Touch Signing Certificate for E-mail Attachments, and touch ChangeSettings. Touch Device Certificate or Smart Card Certificate, and touch Save.7. Next to Split Encrypted E-mail for Each Recipient, select Enabled to split an encryptedemail addressed to multiple recipients into individual encrypted emails addressed to each ofthe recipients.Note: When an encrypted email is split for each recipient, it will only be sent to recipients with avalid email address. Print a transmission report to see delivery status. For details see ConfiguringSecure HTTP and SSL/TLS Settings on page 598. Click Apply.