To ensure efficient access to the PKI service during the process modeling, the IdAM allows configuration of the following connection parameters to the PKI service.
The following lists the parameters available for configuring the CA profile and provides an animation showing how to add a new CA profile.
CA Profile Settings
Specify the name of the CA Service.
Select the protocol that should be used to connect to your CA, for example, CMP over HTTP.
IdAM Identity (RA Identity)
As the IdAM is acting as a Registration Authority (RA), the following settings are available for providing a corresponding identity.
Displays the configuration status of the RA Identity.
Security Token (P12 file)
Click Select Security Token to select the PKCS#12 token file to load.
Passphrase for the PKCS#12 file.
Install Security Token
Click to load the token into the Trust Anchor.
Issuing CA Certificate
The valid issuing CA certificate according to the IdAM token.
Displays the configuration status of the CA certificate.
|Issuing CA Certificate|
Click Select Certificate to select the PEM file to load.
Click to load the certificate into the Trust Anchor.
Specify the settings for the CMP request, for example SHA512withRSA.
The following settings are available for configuration of the HTTP connection:
IP Address or Domain Name.
Port number of the service.
Specify the service URL.
Optionally select to allow uploading the TLS Certificates.
Optionally select to allow uploading the Client Token.
Example: Add CA Profile
The following example shows how to add a new CA profile.