A certificate profile must have been created and be in the state "active". See Create certificate profile.

1. In Identity Manager Operator, go to the Search page and select Workplace certificate profiles from the drop-down list.

2. Click Search to get a list of certificate profiles, and select the active profile that you want to enroll.

3. Select Enroll profile. For the selected enrollment protocol, follow the instructions below. 

   Expand
   title Enroll P10 profile
   In Upload CSR, click to search for and upload the certificate signing request (CSR) file. Click Next. Edit the server request. Click Download to download the P10 certificate. The P10 certificate is related to the asset or to the certificate profile. Click Next to proceed with the process or Cancel to close the process.

   
   

   Expand
   title Enroll P12 profile
   Expand title Without domain policies set Click Search asset and select an existing asset or create an asset. For more information, see Create asset. Click Next to proceed with the process or Cancel to close the process. Enter data in the fields under Certificate data, Click Next.  In Certificate password, do the following: Click the download icon to download the certificate to your system. Enter password and select the Confirm displayed password checkbox to confirm the password conditions. The password cannot be stored or retrieved.  Click Next. In Confirm certificate installation, click Confirm to confirm the installation.  Expand title With domain policies set Enter data in the fields under Certificate profile data. Enter data in the fields under Certificate data. Enter the domain name in the DNS field. If more than one DNS entry is required, the entries must be comma-separated. Click Next to proceed with the process or Cancel to close the process.  In Certificate password, do the following: Click the download icon to download the certificate to your system. Enter password and select the Confirm displayed password checkbox to confirm the password conditions. The password cannot be stored or retrieved.  Click Next. In Confirm certificate installation, click Confirm to confirm the installation.

   
   

   Expand
   title Enroll ACME profile
   Expand title Without domain policies set Enter data in the fields under Certificate data. Click Next to proceed with the process or Cancel to close the process.  Expand title With domain policies set Enter data in the fields under Certificate data. Enter the domain name in the DNS field. If more than one DNS entry is required, the entries must be comma-separated. Click Next to proceed with the process or Cancel to close the process.  The registration request is sent directly to CM.

   
   

   Expand
   title Enroll SCEP profile
   Expand title Without domain policies set Enter data in the fields under Certificate data. Click Next to proceed with the process or Cancel to close the process.  Expand title With domain policies set Enter data in the fields under Certificate data. Enter the domain name in the DNS field. If more than one DNS entry is required, the entries must be comma-separated. Click Next to proceed with the process or Cancel to close the process.

   
   

Once the enroll profile action is completed, a notification for approval is sent to the administrator and you will get further information via email.

If the request has been sent already, you will also get a notification. An administrator with approval rights will approve or reject the request. For more information, see Workplace - Approval handling. 

1. Once the request has been approved, go to the Search page and select Workplace requests.
2. Click Search. The request will now have the status Approved.