Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

New article for CM 8.10. Please review! Most content reused from the similar CA article. Reviewed by Mikko and ready to be published. (tick)

Update excerpt when publishing!

This article is added for CM 8.10. 

This article describes how to change certain parameters of a Signing Authority (SA) in Smart ID Certificate Manager (CM). The name of the SA can be modified and the SA can be closed or reactivated.

Furthermore, CM includes functionality to renew SA certificates without breaking the certification chain of already issued end user certificates. Renewed SA certificates must replace the existing ones in the trust stores of all third party client software, server software and devices. The serial number and signature of the renewed SA certificate will differ from the certificate it replaces. A later expiry date and a different signing algorithm can optionally be chosen at time of renewal. After renewal, the old certificate will not remain in the database.

This task is done in Administrator's workbench (AWB).

Prerequisites

The SA tasks require a specific license option.

The following task requires MSO signatures to be completed.

  • Both officers must have the following roles:

    • Use AWB

    • Signing Authority and SA Key tasks

A connection to the CM host must have been established. See Connect to a Certificate Manager host.

Step-by-step instruction

Modify SA

Error rendering macro 'excerpt-include' : No link could be created for 'ID:Modify CA in Certificate Manager'.

Related information


  • No labels