Comment: This article is new for Smart ID Identity Manager 5.0.0.
| Info |
|---|
This article is new for Smart ID Identity Manager 5.0.0. |
...
Proper S/MIME certificate with configured IDM e-mail sender address in DN's E field and/or SAN RFC-822 entry
If subject DN email field is absent, SAN extension must be critical
Note: broken Broken support for DN.E was is fixed in IDM 245.0.0.R1
must not be self-signed
Key usage:
If present, must be critical and at least either digitalSignature or nonRepudiationValidity:
Adhering to CAB-Forum requirements from https://cabforum.org/working-groups/smime/requirements/#632-certificate-operational-periods-and-key-pair-usage-periods
...