Versions Compared

Old Version 1

changes.mady.by.user Karolin Hemmingsson (Unlicensed)

Saved on

compared with

New Version 2

changes.mady.by.user Ann Base (Deactivated)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

This article describes how to issue a certificate when the public key and user data to be stored in the certificate, are available in a request file that complies with the PKCS #10 format. This task is done in theĀ Registration Authority (RA) in Certificate Manager (RA).

Prerequisites

Expand
titlePrerequisites

This task requires that:

  • The Registration Authority is running.
  • The issuing procedure to be used is known.
  • The officer has the following role:
    • Issue certificate
  • A request file containing data complying with the PKCS #10 format is available.
  • A file where the issued certificate is to be stored is available.
    A smart card reader     is available.
Note

It is possible to use a virtual registration officer certificate, that is, a software token, instead of a smart card to authenticate the officer, but for security reasons, this is not recommended.


Step-by-step instruction

Expand
titleIssue certificate from request file


Note
titleOptions
  • The file name and the media of the issued certificate are optional.

  1. In the RA application window, select the Certificate tab.

  2. Specify paths and file names for the request file and for the media:

    1. Click the button next to Request File and browse to the file containing the certificate request. A format control of the selected file is automatically performed.

    2. Click the button next to File for Media and specify a path and file name for the certificate to be stored. You need write access to the location where the certificate is to be stored.

  3. Select a procedure for the new certificate to be issued.

    Note

    To see existing procedures, you may have to modify your procedure filters.


  4. Enter data in the input fields. If required, you may change what fields that should be visible. See Select fields in Registration Authority in Certificate Manager.

    Note

    Fields that are not shown will not be included in the certificate. Use the option Auto add data fields to guarantee that all fields are being sent to the CM host.


  5. As long as the Officer PIN text box is not available, the reason for this will be displayed in the status bar and you should take necessary actions.

  6. Enter your PIN code in Signature PIN.

  7. Click Submit to send the request to the CM host.


Related information