Your browser does not allow storing cookies. We recommend enabling them.

PreviousNextUp[Front page] [Index]

Enrolling an RA Certificate

To enroll a new RA certificate Click the Enroll New Certificate button. This opens the New RA Certificate Enrollment page.

If you are using CMP over HTTP connection as the RA-CA connection type and you have given the CMP URL on the RA page, the CA address will already be filled. Otherwise select the Enroll Client Service to use and give the CA Connection Address.

Click Refresh to update the CA list and select the relevant CA. Fill in the Reference number and the Key of the delegated RA entity. You can also fill in the subject name of the RA certificate request in the Subject name field.

Figure : Enrolling the RA certificate

By default, a 1024-bit RSA key is generated. To change this, click Set Key Generation Parameters. This opens the Key Generation / Import page where you can edit the key attributes.

Click Proceed to start the private key generation and certificate enrollment.

If the CA is set to issue certificates automatically for valid (RA) entities the certificate should now be displayed on the Registration Authority page under RA Certificate. If the request needs to be manually approved or the connection to the CA is slow, there will be a Poll Request button under RA Certificate and a note about the pending request.

PreviousNextUp[Front page] [Index]




What to read next:

  • Reduce Secure Shell risk. Get to know the NIST 7966.

    The NISTIR 7966 guideline from the Computer Security Division of NIST is a direct call to action for organizations regardless of industry and is a mandate for the US Federal government.
    Download now
  • ISACA Practitioner Guide for SSH

    With contributions from practitioners, specialists and SSH.COM experts, the ISACA “SSH: Practitioner Considerations” guide is vital best practice from the compliance and audit community.
    Download now