...
Bootstrapping of productive systems involves use of various certificate authorities to generate keys and issue certificates used by IDM.
Depending Most descriptors, such as EncryptedFields and ObjectHistorySigner, always require proper bootstrapping for secure operation. However, depending on the subset of IDM features to be used, certain descriptors may be configured with placeholder keys and certificates may be configured for certain descriptors (e.g. SignEmailDescriptor, if E-Mail signing in IDM is not enabled). However, most descriptors, such as EncryptedFields and ObjectHistorySigner always require proper bootstrapping for secure operation.
See Bootstrap the sign and encrypt engine in Identity Manager detailing the specific requirements for each descriptor.
...
For development- and test-environments, test keys and certificates for all default descriptors can be generated using features of the IDM bootstrap.zip package and bootstrap Docker container include a feature to generate test keys and certificates for all default descriptors, see Bootstrapping Development And Test Systems .
...