Enigmail Configuration Manual

Multiple Identity Configuration

Overview

Enigmail supports the Multiple Identity feature within Thunderbird/SeaMonkey, allowing to configure OpenPGP Security settings for each identity.

  1. Create a Secondary ID
  2. Configure OpenPGP Options


Create a Secondary ID

In order to create or manage a Secondary ID, go to Tools > Account Settings and select the account for which you wish to create/manage an ID.

Account Settings

Select Manage Identities... to open the Identities for ID window.

Identities

If you already have a secondary ID created, you can select Edit, otherwise select Add to open the Identity Settings window.

Identities

Click on the OpenPGP Security tab in order to modify the OpenPGP options.

Configure OpenPGP Options

Modify the settings in the OpenPGP Options window as desired for the account.

OpenPGP Options

  • Enable OpenPGP support (Enigmail) for this identity: if this option is not activated, no encrypted messages can be sent from this identity, and no option can be configured. Note that this does not influence the decryption/verification of received messages, which is independent of any account.

  • Use Email address of this identity to identify OpenPGP key: if you do not want to specify a key ID, using this option, the key is chosen according to the email address of the account. If you have several keys with the same email address, you should not use this option

  • Use specific OpenPGP key ID (0x1234ABCD): if this option is selected you can type in the OpenPGP key id you want to use for this account. The key id must be preceeded with 0x (e.g. 0x3FA57EB9). Alternatively, you can click on the Select Key ... button to chose your key from a dialog.

  • Sign non-encrypted messages by default: if you compose a message from this account, signing is automatically enabled if encryption is not enabled at the same time. You can see the signing status in the lower right corner of the message composing dialog: if the small pencil is green, signing is activated.
    Note: If you change the account while composing a message, signing will be activated or deactivated according the chosen account, unless you have modified the signing or encryption status manually!

  • Sign encrypted messages by default: if you compose a message from this account, signing is automatically enabled if encryption is enabled at the same time.

  • Encrypt messages by default: enable this option, if you want to automatically try to encrypt messages sent from this account. You can see the encryption status in the lower right corner of the message composing dialog: if the small key is green, encryption is activated.
    Note: If you change the account while composing a message, encryption will be activated or deactivated according the chosen account, unless you have modified the signing or encryption option manually!

  • Always use PGP/MIME: PGP/MIME is a standard defined in RFC 3156 which allows you to encrypt attachments together with the message body and to encrypt HTML mails and special character sets. It is superior to the more common so called inline-PGP standard. Unfortunately, it is only supported by a limited (but growing!) number of mail clients. Apart from Enigmail, currently known are: Apple Mail, Becky, Evolution, KMail, Mulberry, Sylpheed and The Bat!.

    If you send messages, they are normally signed and/or encrypted with inline-PGP. Enable this option to use the PGP/MIME standard for all outgoing messages.

  • Advanced...: open the Enigmail Preferences dialog

  • Send 'OpenPGP' Header: send a message header information about your key:

    1. Send OpenPGP key ID: send the key ID specified under "Use specific OpenPGP key ID".
    2. Send URL for key retrieval: send a URL telling from where your OpenPGP key can be obtained.