Hello, anyone here familiar with Gnus + S/MIME + gnupg? A few days back I decided to set up my environment to sign messages I send out, and to be able to verify signatures of messages I receive. Doing it with pgp was quite easy, and got it working in no time, but S/MIME is giving me a real headache, most probably because I'm misunderstanding something or because I lack some basic knowledge on how certificates are meant to be used. I imported my certificate with 'gpgsm --import ' and "gpgsm -K" shows that the certificate got imported correctly: ,---- | $ gpgsm -K | /home/angelv/.gnupg/pubring.kbx | ------------------------------- | ID: 0xFD3C585C | S/N: 07A6ED8580BD2114605C7B37AB7B8919 | (dec): 10171334757275596790721797340316535065 | Issuer: /CN=AC FNMT Usuarios/OU=Ceres/O=FNMT-RCM/C=ES | Subject: /CN=DE VICENTE GARRIDO ANGEL MANUEL - .... `---- My ~/.gnupg/gpgsm.con just contains: ,---- | disable-crl-checks `---- and with that, I can sign a file in the command line without problems: ,---- | $ gpgsm --sign test.txt >ciphertext | gpgsm: Note: non-critical certificate policy not allowed | gpgsm: Note: non-critical certificate policy not allowed | gpgsm: Note: non-critical certificate policy not allowed | gpgsm: CRLs not checked due to --disable-crl-checks option | gpgsm: DBG: adding certificates at level -2 | gpgsm: signature created `---- But when I try to sign a message from Gnus I always get a message saying "No sign key for ; skip it? (y or n)" What do I have to configure in Emacs/Gnus so that it will know that my e-mail address is linked to the same certificate used in the command line? By the way, I'm using the following: ,---- | ArchLinux | Emacs version: 28.2 (2022-09-12) | Gnus version: 5.13 | GnuPG version: 2.2.40 `---- Any pointers/help greatly appreciated -- Ángel de Vicente -- (GPG: 0x64D9FDAE7CD5E939) Research Software Engineer (Supercomputing and BigData) Instituto de Astrofísica de Canarias (https://www.iac.es/en)