S/MIME with Robert Bosch GmbH Quick Start
General

This page acts as a starting point are for exchanging encrypted messages using S/MIME with Robert Bosch GmbH and all their subsidiaries. The base is a working installation of CryptoFilter or XWall with the CryptoFilter add-on.
Get your certificate

If you use S/MIME only with Robert Bosch GmbH, then a single certificate for your whole domain recommended. You can use any certificate you like, including a certificate from your own Certificate Authority.

Among others, a certificate from Comodo is free.

You may choose a generic e-mail address like info@yourdomain.com or office@yourdomain.com. Don't use a real existing human person or the e-mail address of an administrator account.

Once you got the certificate, make sure it is in PEM format and that the PEM file includes the private key, the certificate and any intermediate certificates.

Make sure the filename includes the expiration date, for example, info@yourdomain-2025-12-31.pem

Copy info@yourdomain-2025-12-31.pem to the CERT\PRIV directory.

Open the original PEM file with an editor and remove the entire section containing the private key.

The private key is the section from -----BEGIN PRIVATE KEY----- to -----END PRIVATE KEY-----.

Go to https://certsrv.bosch.com/publish.jsp, select the tab labeled Domain certificate and upload the PEM file without the private key.

Note: If your certificate is from your own Certificate Authority or from a Certificate Authority that is unknown to Robert Bosch GmbH, select the tab labeled CA certificate and upload your Certificate Authority certificate.

Get the certificate of the Robert Bosch GmbH associate

Manually get the certificate

Go to https://certsrv.bosch.com/index.jsp

Search for the e-mail address of the Robert Bosch GmbH associate

Select Certificate (.cer) to download the certificate file

The filename is the e-mail address with an expiration identifier and a .cer extension.

Rename the file from .cer to .pem and remove the expiration identifier.

e.g. rename sample@de.bosch.com_0x78ABFEF5.cer tp sample@de.bosch.com.pem

Copy sample@de.bosch.com.pem to the CERT\PUB directory

Automatically get the certificate

Enable Options->S/MIME->Options->Collect the public certificate of the sender

Semi-automatically get the certificate

Ask Rb.Trustcenter@de.bosch.com that they send you all the certificates in a zip file

Inbound messages - from Robert Bosch GmbH to your domain

Select Options->S/MIME->Verify and create a new record

Comment: Verify from Robert Bosch GmbH
For messages from e-mail address: *@??.bosch.com
to e-mail address: *@yourdomain.com
Verify S/MIME signature: enable
Remove S/MIME signature: enable

Select Options->S/MIME->Decrypt and create a new record

Comment: Decrypt from Robert Bosch GmbH
For messages from e-mail address: *@??.bosch.com
to e-mail address: *@yourdomain.com
use this certificate (file in PEM format): info@yourdomain-2025-12-31.pem
Verify S/MIME encryption: disable
Remove S/MIME encryption: enable
Outbound messages - from your domain to Robert Bosch GmbH

Select Options->S/MIME->Sign and create a new record

Comment: Sign to Robert Bosch GmbH
For messages from e-mail address: *@yourdomain.com
to e-mail address: *@??.bosch.com
use this certificate (file in PEM format): info@yourdomain-2025-12-31.pem

Select Options->S/MIME->Encrypt and create a new record

Comment: Encrypt to Robert Bosch GmbH
For messages from e-mail address: *@yourdomain.com
to e-mail address: *@??.bosch.com
use this certificate (file in PEM format): *
©1991-2025 DataEnter GmbH
Wagramerstrasse 93/5/10 A-1220 Vienna, Austria
support@dataenter.co.at
2022-01-04 / Phone
2022-01-04 / Tablet
Changed: 2022-01-04
Server
Desktop
Copyright ©1991-2025 DataEnter GmbH
Wagramerstrasse 93/5/10 A-1220 Vienna, Austria
Fax: +43 (1) 4120051
support@dataenter.co.at