Getting Started

To use the Secure Mail service you need to get registered. Novartis Associates need to run the below procedure once on every workstation. If your workstation was re-staged or you have received a new e-mail address, you will have to do it again.

Novartis associates can start the registration procedure by opening this link:

Please proceed with:

  • On the opened login page, please log in by using your windows credentials (5-2-1 unique ID and password).
  • Request your own Secure Mail certificate (S/MIME) by clicking the button on the right labeled 'Get current certificate'. After that, please use 'Logout'.
  • You will receive a signed e-mail from the Secure Mail Postmaster with further instructions. This registration message will also have your personal Secure Mail certificate ('.pfx') attached. Please follow the instructions to install it on your computer and/or mobile device.

Note: You have to follow the instructions in the e-mail within 30 days of receipt! After that period, the decryption PIN is no longer available for security reasons and you will have to start the above registration procedure again.

If you encounter any problem during the registration, installation or setup procedure, please check our website or contact your local IT Service Desk.


External communication partners need to ask a registered Novartis Associate to send them an encrypted e-mail via the Secure Mail service in order to get registered. The external recipient then need to finish the registration with a One-Time-Password that will be provided to the Novartis Associate. Alternatively the external partner can just answer the Secure Mail notification e-mail with a signed reply with the personal S/MIME certificate or PGP key. Keep in mind that with this later option the external partner will not be able to use the Novartis Data Exchange service as they did not set a personal password. Ideally external partners should get registered the classical way with the One-Time-Password that will get reset with a individual password during the classical registration procedure. External partners that do not posses an own S/MIME certificate or PGP key will get the Secure Mail messages as SecurePDF. The SecurePDF is a PDF form that must be opened with Adobe Acrobat Reader (version 8 or higher). For opening SecurePDF's external partners need to be online (Internet connection).