Extended CMS Signer

ENTERPRISE  This is a SignServer Enterprise feature.

The signer has the fully qualified class name: org.signserver.module.extendedcmssigner.ExtendedCMSSigner.

Overview

The extended CMS signer, in addition to all the features provided by the regular CMS signer, has support for timestamping.

Available Properties

PropertyDescription
TSA_WORKERWorker ID or name of internal timestamp signer in the same SignServer. Optional, default: none. This property cannot be combined with TSA_URL.
TSA_URLURL of external timestamp authority. Optional, default: none. This property cannot be combined with TSA_WORKER.
TSA_USERNAMELogin username used if the TSA uses HTTP Basic Auth. Optional, default: none.
TSA_PASSWORDLogin password used if the TSA uses HTTP Basic Auth. Required if TSA_USERNAME is specified. Default: none.
TSA_DIGESTALGORITHMAlgorithm for timestamp digests. Optional, default: SHA-256.