To ensure efficient access to the PKI service during the process modeling, the IdAM allows configuration of the following connection parameters to the PKI service.
CA Profiles
The following lists the parameters available for configuring the CA profile and provides an animation showing how to add a new CA profile.
CA Profile Settings
Name
Specify the name of the CA Service.
Connection
Type
Select the protocol that should be used to connect to your CA, for example, CMP over HTTP.
CMP
IdAM Identity (RA Identity)
As the IdAM is acting as a Registration Authority (RA), the following settings are available for providing a corresponding identity.
Setting | Description |
|---|
Status | Displays the configuration status of the RA Identity. |
Security Token (P12 file) | Click Select Security Token to select the PKCS#12 token file to load. |
Password | Passphrase for the PKCS#12 file. |
Install Security Token | Click to load the token into the Trust Anchor. |
Issuing CA Certificate
The valid issuing CA certificate according to the IdAM token.
Setting | Description |
|---|
Status | Displays the configuration status of the CA certificate. |
| Issuing CA Certificate | Click Select Certificate to select the PEM file to load. |
Install Certificates | Click to load the certificate into the Trust Anchor. |
CMP
Specify the settings for the CMP request, for example SHA512withRSA.
HTTP Settings
The following settings are available for configuration of the HTTP connection:
Setting | Description |
|---|
IP/Domain | IP Address or Domain Name. |
Port | Port number of the service. |
URL Path | Specify the service URL. |
TLS
Optionally select to allow uploading the TLS Certificates.
Client Authentication
Optionally select to allow uploading the Client Token.
Example: Add CA Profile
The following example shows how to add a new CA profile.
