Versions Compared

Old Version 1

changes.mady.by.user Josefin Klang

Saved on

compared with

New Version Current

changes.mady.by.user Ylva Andersson

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

This article describes how a Workplace certificate agent enrolls a profile in the Workplace package in Smart ID Identity Manager.

Prerequisites

Expand
titlePrerequisites

A certificate profile must have been created and be in the state "active". See Create certificate profile.

Step-by-step instruction

...

Enroll profile

  1. In Identity Manager Operator, go to the Search page and select Workplace certificate profiles from the drop-down list.

  2. Click Search to get a list of certificate profiles, and select the active profile that you want to enroll.

  3. Select Enroll profile. For the selected enrollment protocol, follow the instructions below

...

  1. :

Enroll P10 profile

Expand
titleEnroll P10 profile
  1. In Upload CSR, click to search for and upload the certificate signing request (CSR) file.
  2. Click Next.
  3. Edit the server request.
  4. Click Download to download the P10 certificate. The P10 certificate is related to the asset or to the certificate profile.
  5. Click Next to proceed with the process or Cancel to close the process.

...

Enroll P12 profile

Expand
titleWithout domain policies set
  1. Click Search asset and select an existing asset or create an asset. For more information, see Create asset.
  2. Click Next to proceed with the process or Cancel to close the process.

  3. Enter data in the fields under Certificate data,

  4. Click Next
  5. In Certificate password, do the following:
    • Click the download icon to download the certificate to your system.
    • Enter password and select the Confirm displayed password checkbox to confirm the password conditions. The password cannot be stored or retrieved. 
  6. Click Next.
  7. In Confirm certificate installation, click Confirm to confirm the installation. 
Expand
titleWith domain policies set
  1. Enter data in the fields under Certificate profile data.

  2. Enter data in the fields under Certificate data.

  3. Enter the domain name in the DNS field. If more than one DNS entry is required, the entries must be comma-separated.
  4. Click Next to proceed with the process or Cancel to close the process. 
  5. In Certificate password, do the following:
    • Click the download icon to download the certificate to your system.
    • Enter password and select the Confirm displayed password checkbox to confirm the password conditions. The password cannot be stored or retrieved. 
  6. Click Next.
  7. In Confirm certificate installation, click Confirm to confirm the installation. 

...

Enroll ACME profile

Expand
titleWithout domain policies set

  1. Enter data in the fields under Certificate data.

  2. Click Next to proceed with the process or Cancel to close the process. 
Expand
titleWith domain policies set

  1. Enter data in the fields under Certificate data.

  2. Enter the domain name in the DNS field. If more than one DNS entry is required, the entries must be comma-separated.
  3. Click Next to proceed with the process or Cancel to close the process. 

The registration request is sent directly to CM.

...

Enroll SCEP profile

Expand
titleWithout domain policies set

  1. Enter data in the fields under Certificate data.

  2. Click Next to proceed with the process or Cancel to close the process. 
Expand
titleWith domain policies set

  1. Enter data in the fields under Certificate data.

  2. Enter the domain name in the DNS field. If more than one DNS entry is required, the entries must be comma-separated.
  3. Click Next to proceed with the process or Cancel to close the process. 

Approvals

Expand
titleProfiles that require approval

Once the enroll profile action is completed, a notification for approval is sent to the administrator and you will get further information via email.

If the request has been sent already, you will also get a notification. An administrator with approval rights will approve or reject the request. For more information,

...

see Workplace - Approval handling


Expand
titleView approval status
  1. Once the request has been approved, go to the Search page and select Workplace requests.
  2. Click Search. The request will now have the status Approved.

Use case details

Expand
titleOverview and technical details


Use case description

A Workplace certificate agent wants to enroll a profile. 

Outcome

For ACME or SCEP registrations, the asset is only registered on the Certificate Manager side. No visible outcome in Identity Manager Operator. 

For P12 or P10 requests, a certificate will be related to the asset on which the request was triggered.

Symbolic name

AssetsProcEnrollProfile

  • P10: AssetsSubProcEnrollP10Profile
  • P12: AssetsSubProcEnrollP12Profile
  • ACME: AssetsSubProcEnrollACMEProfile 
  • SCEP: AssetsSubProcEnrollSCEPRegistration
Process name

Enroll profile

Component

Identity Manager Operator

Process start

Option 1: Search>Workplace asset>Search for assets (in state "Active")>Enroll profile

Option 2: Search>Workplace certificate profiles>Search for a certificate profile (in state "Active")>Enroll profile 

Note

If the process is started on an asset, the asset data is used as predefined values for the request or registration.




Related information