SecretAgent 5.7-5.10 Plug-ins for Lotus Notes R5 and R6


Integrates SecretAgent functionality (encrypt/sign/decrypt/verify) into your Lotus Notes e-mail client making these functions available for all e-mail messages composed and received in Notes.

This release only works with SecretAgent releases 5.7 through 5.9. (If you have an earlier release of SecretAgent 5.x installed, you must upgrade to release 5.7 or above before installing this plug-in.)

The Lotus Notes plug-in is no longer available as a free download. Please contact ISC to purchase it or for more information.


  • You must have Lotus Notes R5 or R6, as well as SecretAgent 5.7/5.8/5.9, installed prior to installing one of these plug-ins.
  • Due to limitations of the client-side Lotus Notes plug-in architecture, SecretAgent must encrypt an outgoing message before complete recipient addresses are available to it. For this reason, when encryption is required, SecretAgent will display its recipient selection dialog. You must select recipient certificates independently of the message addressing process. (Hopefully, the Notes plug-in architecture will eventually be upgraded so that this inconvenience can be eliminated in future versions of our plug-in.)
  • Keep in mind that Lotus Notes keeps plaintext copies of your outgoing e-mail messages in your Sent folder. An additional plaintext copy of a message will be created if you use the 'Save and Send' feature in Notes. To remove these potentially sensitive messages from your system, you must manually delete them from your Sent folder and from any other location in which they may have been saved.
  • This plug-in will not work with FORTEZZA but it should work with any PKCS#11 token supported by SecretAgent.

Usage Guide

To send an encrypted (and optionally signed), or signed-only, e-mail message, compose and address your message as you usually do. Then check the desired options "Encrypt e-mail using SecretAgent" and/or "Sign e-mail using SecretAgent" in the Actions menu.

When you click "Send," you will be presented with either SecretAgent's standard recipient selection dialog (if you chose to encrypt the message) or the password dialog (if you're only signing):

Select recipient certificates and click OK. (You must now enter your password if you chose to sign the message.) Your message will be encrypted (and optionally signed) or only signed and sent to the specified addressees. Note that a (plaintext) copy of the message is stored in your Sent folder.

To decrypt and/or validate a message in your inbox
, double click the message to open as you normally would. If the message was encrypted, SecretAgent will prompt you to enter your password:

When you click OK, the message will be decrypted. If the message was signed and the signature is valid, SecretAgent will display the signer's distinguished name: