User Guide Cancel

Securing PDFs with certificates

  1. Acrobat User Guide
  2. Introduction to Acrobat
    1. Access Acrobat from desktop, mobile, web
    2. Introducing the new Acrobat experience
    3. What's new in Acrobat
    4. Keyboard shortcuts
    5. System Requirements
  3. Workspace
    1. Workspace basics
    2. Opening and viewing PDFs
      1. Opening PDFs
      2. Navigating PDF pages
      3. Viewing PDF preferences
      4. Adjusting PDF views
      5. Enable thumbnail preview of PDFs
      6. Display PDF in browser
    3. Working with online storage accounts
      1. Access files from Box
      2. Access files from Dropbox
      3. Access files from OneDrive
      4. Access files from SharePoint
      5. Access files from Google Drive
    4. Acrobat and macOS
    5. Acrobat notifications
    6. Grids, guides, and measurements in PDFs
    7. Asian, Cyrillic, and right-to-left text in PDFs
  4. Creating PDFs
    1. Overview of PDF creation
    2. Create PDFs with Acrobat
    3. Create PDFs with PDFMaker
    4. Using the Adobe PDF printer
    5. Converting web pages to PDF
    6. Creating PDFs with Acrobat Distiller
    7. Adobe PDF conversion settings
    8. PDF fonts
  5. Editing PDFs
    1. Edit text in PDFs
    2. Edit images or objects in a PDF
    3. Rotate, move, delete, and renumber PDF pages
    4. Edit scanned PDFs
    5. Enhance document photos captured using a mobile camera
    6. Optimizing PDFs
    7. PDF properties and metadata
    8. Links and attachments in PDFs
    9. PDF layers
    10. Page thumbnails and bookmarks in PDFs
    11. PDFs converted to web pages
    12. Setting up PDFs for a presentation
    13. PDF articles
    14. Geospatial PDFs
    15. Applying actions and scripts to PDFs
    16. Change the default font for adding text
    17. Delete pages from a PDF
  6. Scan and OCR
    1. Scan documents to PDF
    2. Enhance document photos
    3. Troubleshoot scanner issues when scanning using Acrobat
  7. Forms
    1. PDF forms basics
    2. Create a form from scratch in Acrobat
    3. Create and distribute PDF forms
    4. Fill in PDF forms
    5. PDF form field properties
    6. Fill and sign PDF forms
    7. Setting action buttons in PDF forms
    8. Publishing interactive PDF web forms
    9. PDF form field basics
    10. PDF barcode form fields
    11. Collect and manage PDF form data
    12. About forms tracker
    13. PDF forms help
    14. Send PDF forms to recipients using email or an internal server
  8. Combining files
    1. Combine or merge files into single PDF
    2. Rotate, move, delete, and renumber PDF pages
    3. Add headers, footers, and Bates numbering to PDFs
    4. Crop PDF pages
    5. Add watermarks to PDFs
    6. Add backgrounds to PDFs
    7. Working with component files in a PDF Portfolio
    8. Publish and share PDF Portfolios
    9. Overview of PDF Portfolios
    10. Create and customize PDF Portfolios
  9. Sharing, reviews, and commenting
    1. Share and track PDFs online
    2. Mark up text with edits
    3. Preparing for a PDF review
    4. Starting a PDF review
    5. Hosting shared reviews on SharePoint or Office 365 sites
    6. Participating in a PDF review
    7. Add comments to PDFs
    8. Adding a stamp to a PDF
    9. Approval workflows
    10. Managing comments | view, reply, print
    11. Importing and exporting comments
    12. Tracking and managing PDF reviews
  10. Saving and exporting PDFs
    1. Saving PDFs
    2. Convert PDF to Word
    3. Convert PDF to PPTX
    4. Convert PDF to XLSX or XML
    5. Convert PDF to JPG
    6. Convert PDF to PNG
    7. Convert or export PDFs to other file formats
    8. File format options for PDF export
    9. Reusing PDF content
  11. Security
    1. Enhanced security setting for PDFs
    2. Securing PDFs with passwords
    3. Manage Digital IDs
    4. Securing PDFs with certificates
    5. Opening secured PDFs
    6. Removing sensitive content from PDFs
    7. Setting up security policies for PDFs
    8. Choosing a security method for PDFs
    9. Security warnings when a PDF opens
    10. Securing PDFs with Adobe Experience Manager
    11. Protected View feature for PDFs
    12. Overview of security in Acrobat and PDFs
    13. JavaScripts in PDFs as a security risk
    14. Attachments as security risks
    15. Allow or block links in PDFs
  12. Electronic signatures
    1. Sign PDF documents
    2. Capture your signature on mobile and use it everywhere
    3. Send documents for e-signatures
    4. Create a web form
    5. Request e-signatures in bulk
    6. Collect online payments
    7. Brand your account
    8. About certificate signatures
    9. Certificate-based signatures
    10. Validating digital signatures
    11. Adobe Approved Trust List
    12. Manage trusted identities
  13. Printing
    1. Basic PDF printing tasks
    2. Print Booklets and PDF Portfolios
    3. Advanced PDF print settings
    4. Print to PDF
    5. Printing color PDFs (Acrobat Pro)
    6. Printing PDFs in custom sizes
  14. Accessibility, tags, and reflow
    1. Create and verify PDF accessibility
    2. Accessibility features in PDFs
    3. Reading Order tool for PDFs
    4. Reading PDFs with reflow and accessibility features
    5. Edit document structure with the Content and Tags panels
    6. Creating accessible PDFs
    7. Cloud-based auto-tagging
  15. Searching and indexing
    1. Creating PDF indexes
    2. Searching PDFs
  16. Multimedia and 3D models
    1. Add audio, video, and interactive objects to PDFs
    2. Adding 3D models to PDFs (Acrobat Pro)
    3. Displaying 3D models in PDFs
    4. Interacting with 3D models
    5. Measuring 3D objects in PDFs
    6. Setting 3D views in PDFs
    7. Enable 3D content in PDF
    8. Adding multimedia to PDFs
    9. Commenting on 3D designs in PDFs
    10. Playing video, audio, and multimedia formats in PDFs
    11. Add comments to videos
  17. Print production tools (Acrobat Pro)
    1. Print production tools overview
    2. Printer marks and hairlines
    3. Previewing output
    4. Transparency flattening
    5. Color conversion and ink management
    6. Trapping color
  18. Preflight (Acrobat Pro)
    1. PDF/X-, PDF/A-, and PDF/E-compliant files
    2. Preflight profiles
    3. Advanced preflight inspections
    4. Preflight reports
    5. Viewing preflight results, objects, and resources
    6. Output intents in PDFs
    7. Correcting problem areas with the Preflight tool
    8. Automating document analysis with droplets or preflight actions
    9. Analyzing documents with the Preflight tool
    10. Additional checks in the Preflight tool
    11. Preflight libraries
    12. Preflight variables
  19. Color management
    1. Keeping colors consistent
    2. Color settings
    3. Color-managing documents
    4. Working with color profiles
    5. Understanding color management

Before you begin

Acrobat now has an improved interface, as shown. If you see a different experience, refer to help for your current experience.

Acrobat tools are dispalyed in the left pane.

Note:

For a full list of articles about security, see Overview of security in Acrobat and PDF content.

Certificate security

Use certificates to encrypt documents and to verify a digital signature. A digital signature assures recipients that the document came from you. Encryption ensures that only the intended recipient can view the contents. A certificate stores the public key component of a digital ID.

When you secure a PDF using a certificate, you specify the recipients and define the file access level for each recipient or group. For example, you can allow one group to sign and fill forms and another to edit text or remove pages. You can choose certificates from your list of trusted identities, files on disk, LDAP server, or the Windows certificate store. Always include your certificate in the recipient list so that you can open the document later.

Note:

If possible, encrypt documents using certificates from third-party digital IDs. If the certificate is lost or stolen, the issuing authority can replace it. If a self-signed digital ID is deleted, all PDFs that were encrypted using the certificate from that ID are inaccessible forever.

Adobe Acrobat deeplink

Try it in the app
Secure PDFs using digital certificates in a few simple steps.

Encrypt a PDF with a certificate

  1. Open a PDF, and choose All tools > Protect a PDF > Encrypt with Certificate.

  2. When prompted, select Yes.

  3. In the Certificate Security Settings dialog, select the document components to encrypt.

  4. From the Encryption Algorithm menu, choose the rate of encryption, and then select Next.

    The encryption algorithm and key size are version-specific. Recipients must have the corresponding version (or later) of Acrobat or Acrobat Reader to decrypt and read the document.

    • If you select 128-bit AES, recipients must have Acrobat 7 or later or Acrobat Reader 7 or later to open the document.

    • If you select 256-bit AES, either Adobe Acrobat 9 or later or Adobe Reader 9 or later is required to open the document.

  5. Create a recipient list for the encrypted PDF. Include your certificate in the recipient list so you can open the document later.

    • Select Search to locate identities in a directory server or in your list of trusted identities.

    • Select Browse to locate the file that contains certificates of trusted identities.

    • To set printing and editing restrictions for the document, select recipients from the list, and then select Permissions.

  6. Select Next to review your settings, and then select Finish.

    When a recipient opens the PDF the security settings you specified for that person are used.

Change encryption settings

  1. Open a PDF, and choose All tools > Protect a PDF > Set security properties.

  2. Select Change Settings.

  3. Do any of the following, and then select Next.

    • To encrypt different document components, select that option.

    • To change the encryption algorithm, choose it from the menu.

  4. Do any of the following:
    • To check a trusted identity, select the recipient and then select Details.

    • To remove recipients, select one or more recipients, and then select Remove. Only remove your certificate if you want access to the file using that certificate.

    • To change the permissions of recipients, select one or more recipients and then select Permissions.

  5. Select Next, and then select Finish. Select OK to close the Document Properties dialog and apply your changes.

Remove encryption settings

  1. Open a PDF, and choose All tools > Protect a PDF > Remove security.

  2. If prompted, type the permissions password. If you don’t know the permissions password, contact the author of the PDF.

Sharing certificates with others

Businesses that use certificates for secure workflows often store certificates on a directory server that participants can search to expand their list of trusted identities.

When you receive a certificate from someone, you can add it to your list of trusted identities. You can set your trust settings to trust all digital signatures and certified documents created with a specific certificate. You can also import certificates from a certificate store, such as the Windows certificate store. A certificate store often contains certificates issued by various certification authorities.

Note:

Third-party security providers usually validate identities by using proprietary methods. Or, they integrate their validation methods with Acrobat. If you use a third-party security provider, see the documentation for the third-party provider.

Get certificates from other users

Certificates that you receive from others are stored in a list of trusted identities. This list resembles an address book and enables you to validate the signatures of these users on any documents you receive from them.

Add a certificate from email

When a contact sends a certificate to you by email, it's displayed as an import/export methodology file attachment.

  1. Open the email attachment, then select Set Contact Trust in the dialog box that appears.

  2. Select the contact and then select Import.

  3. Supply any password required, and select Next. Select OK to view the import details, and then select OK again.

  4. Choose the location and select Next. Then select Finish.

  5. Select Set Contact Trust again to see that the contact has been added to Certificates. Select the certificate to view Details and Trust information.

    • For Trust, select the options desired.

    • Use This Certificate As A Trusted Root only if it's required to validate a digital signature. Once you make a certificate a trust anchor, you prevent revocation by checking on it (or any certificate in the chain).

    • To allow actions that can be a security risk, select Certified Documents and then select the options you want to allow:

      Dynamic Content

      Includes FLV files, SWF files, and external links.

       

      Embedded High Privilege JavaScript

      Trusts embedded scripts.

       

      Privileged System Operations

      Includes networking, printing, and file access

       

Add a certificate from a digital signature in a PDF

You can safely add a certificate to your trusted identities from a signed PDF by first verifying the fingerprint with the originator or the certificate.

A self-signed certificate

  1. Open the PDF containing the signature.
  2. Open the Signatures panel, and select the signature.
  3. On the Options menu, select Show Signature Properties, and then select Show Signer’s Certificate.

  4. If the certificate is self-signed, contact the originator of the certificate to confirm that the fingerprint values on the Details tab are correct. Trust the certificate only if the values match the values of the originator.
  5. Select the Trust tab, select Add To Trusted Certificates, and select OK.

  6. In the Import Contact Settings dialog box, specify trust options, and select OK.

Set up Acrobat to search the Windows certificate store (Windows only)

  1. Select Preferences > Signatures. For Verification, click More.
  2. Select the desired options under Windows Integration, and click OK twice.

Trusting certificates from the Windows certificate store is not recommended.

Import certificates using the Certificate wizard (Windows only)

If you use the Windows certificate store to organize your certificates, you can import certificates using a wizard in Windows Explorer. To import certificates, identify the file that contains the certificates, and determine the file location.

  1. In Windows Explorer, right-click the certificate file and choose Install PFX.
  2. Follow the onscreen instructions to add the certificate to the Windows certificate store.
  3. If you're prompted to validate the certificate before installing it, note the MD5 and SHA1 digest values (fingerprint). Contact the originator of the certificate to confirm that the values are correct before you trust the certificate. Select OK.

Verify information on a certificate

The Certificate Viewer dialog box provides user attributes and other information about a certificate. When others import your certificate, they often want to check your fingerprint information against the information they receive with the certificate. (The fingerprint refers to the MD5 digest and SHA1 digest values.) You can check certificate information for your digital ID files or the files you import.

For more information about verifying certificates, see the Digital Signatures User Guide (PDF) at www.adobe.com/go/learn_acr_security_en.

The Certificate Viewer dialog box provides the following information:

  • Certificate validation period

  • Intended use of the certificate

  • Certificate data, such as the serial number and public key method

You can also check if the certificate authority has revoked the certificate. Certificates are usually revoked when an employee leaves the company or when security is compromised in some way.

Verify your own certificate

  1. Navigate to Preferences > Signatures. In Identities & Trusted Certificates, and select More.

  2. Select your digital ID, and then select Certificate Details  .

Verify information on the certificate of a contact

  1. Select the Signatures pane and choose the signature. In the Options menu, select Show Signature Properties.

  2. Select Show Signer’s Certificate to see details of the certificate.

Delete a certificate from trusted identities

  1. Navigate to Preferences > Signatures. In Identities & Trusted Certificates, and select More.

  2. Select the certificate, and select Remove ID.

Get help faster and easier

New user?