Cookies are used to collect information about you. Nexus uses this information to give you a better experience of the website (functional) and to count the pages you visit (statistics).
Click OK to give Nexus your consent to use cookies. Read more about Nexus' cookie policy.
This article describes howa Workplace system administrator creates a certificate profile in the Workplace package in Smart ID Identity Manager.
A certificate profile is a bundle of certificate information that can be used while creating an asset and later on, based on the asset information, create different certificate requests. A certificate request can also optionally be issued without an asset on the certificate profile.
The following enrollment protocols are supported:
P10 - an actual certificate is retrieved which is linked to the certificate profile
P12 - an actual certificate is retrieved which is linked to the certificate profile
ACME - will as a result send data to Certificate Manager
SCEP - will as a result send data to Certificate Manager
In Identity Manager Operator, in the Quick search drop-down list, select Workplace certificate profiles.
Click Create certificate profile.
Enter Profile name and select Enrollment protocol and Certificate template.
Click Next to proceed with the process or Cancel to close the process.
Optional: In Enrollment policy, select to enable an approval step for certificate requests and/or revocation. For more information, see Workplace - Approval handling.
Click Next.
Optional: In Asset policy, select if an asset is required to enroll the certificate profile. For more information, see Create asset.
Click Next.
For the selected enrollment protocol, follow the instructions below:
P10
In P10 certificate policy data, submit the following details:
Key size: Select the certificate key size in the drop-down menu.
Key type: Key type is always RSA
Algorithm: Select the algorithm in the drop-down menu.
Country (C): Enter country code with a two-letter abbreviation, for example, SE or DE.
Organization: Enter your organization name.
Click Next.
Optional: In Domain policy, select whitelist and blacklist domain policies. You can also search for specific domain policies.
P12
In P12 certificate policy data, submit the following details:
Key size: Select the certificate key size in the drop-down menu.
Key type: Key type is always RSA
Algorithm: Algorithm is always SHA256
Country (C): Enter country code with a two-letter abbreviation, for example, SE or DE.
Organization: Enter your organization name.
Click Next.
Optional: In Domain policy, select whitelist and blacklist domain policies. You can also search for specific domain policies.
ACME
Optional: In Domain policy, select whitelist and blacklist domain policies. You can also search for specific domain policies.
SCEP / SCEP-NDES
Optional: In Domain policy, select whitelist and blacklist domain policies. You can also search for specific domain policies.
Use case details
Overview and technical details
Use case description
A Workplace system administrator wants to create a certificate profile.
Outcome
Created certificate profile. Data is saved in AssetsDpCertificateProfile.
