Skip to main content

Nexus Documentation

Nexus Documentation

Main

Nexus Certificate Manager

Certificate Manager news

Certificate Manager release notes

Release notes Certificate Manager 8.13.0
CM container release notes 8.13.0
Service release notes Certificate Manager 8.13.x

Earlier release notes - Certificate Manager

Release notes Certificate Manager 8.12
CM container release notes 8.12.0
Service release notes Certificate Manager 8.12.x
Release notes Certificate Manager 8.11
CM container release notes 8.11.0
Service release notes Certificate Manager 8.11.x
Release notes Certificate Manager 8.10
Service release notes Certificate Manager 8.10.x
Release note Certificate Manager 8.9
Service release notes Certificate Manager 8.9.x
Release note Certificate Manager 8.7.1
Release note Certificate Manager 8.6.1

Release notes Certificate Manager 8.5.x

Release note Certificate Manager 8.5.3
Release note Certificate Manager 8.5.1
Release note Certificate Manager 8.5

Release notes Certificate Manager 8.4.x

Release note Certificate Manager 8.4.1
Release note Certificate Manager 8.4

Release note Certificate Manager 8.3
Release note Certificate Manager 8.2
Release note Certificate Manager 8.1

Supported versions of Certificate Manager

Certificate Manager overview

Certificate Manager architecture overview

Certificate Manager server components
Default ports in Certificate Manager

Officers and roles in Certificate Manager

Certificate Manager clients

Administrator's workbench (AWB)

AWB user interface in Certificate Manager
Change operation mode of Certificate Manager
Start a second instance of AWB in Certificate Manager
Customize format in AWB
Export items from Certificate Manager
Import items to Certificate Manager

Registration Authority (RA) in Certificate Manager

Select fields in Registration Authority in Certificate Manager
RA user interface in Certificate Manager

Certificate Controller (CC) in Certificate Manager

CC user interface in Certificate Manager

Secure Printer (SP) in Certificate Manager

SP user interface in Certificate Manager

Troubleshooting Certificate Manager clients
Launch Certificate Manager clients

Certificate Manager interfaces and APIs

ACME support in Certificate Manager

What is ACME?
Why use ACME?
Request certificate via ACME and Protocol Gateway in Certificate Manager
Manage ACME accounts in Certificate Manager
Examples - Use ACME clients with Certificate Manager
Requirements to revoke certificates issued by ACME account

CMC support in Certificate Manager

CMP support in Certificate Manager

CMP security configuration in Certificate Manager
Request certificate via CMP and Protocol Gateway in Certificate Manager

EST support in Certificate Manager

EST URI configuration
EST over CoAPs support in Certificate Manager
Authentication and preregistration for EST

SCEP support in Certificate Manager

Notes on SCEP implementation in Certificate Manager
Request certificate via SCEP in Certificate Manager

Nexus Windows Enrollment Proxy - WinEP

Enroll on behalf of in WinEP

Verify Enroll on behalf of for Windows

WinEP - Revocation over MS-CSRA

Ping support in Certificate Manager
CM SDK proxy in Certificate Manager
Distribution Point in Certificate Manager
Certificate Manager (CM) REST API

Common Criteria certification for Certificate Manager

Common Criteria certificates for Nexus Certificate Manager and Nexus OCSP Responder
Security Target document

Certificate Manager - requirements and interoperability

CM 8.13.x - Requirements and interoperability

CM requirements and interoperability - earlier versions

CM 8.12.x - Requirements and interoperability
CM 8.11.x - Requirements and interoperability
CM 8.10.x - Requirements and interoperability
CM 8.10.4 - Requirements and interoperability
CM 8.10 - Requirements and interoperability
CM 8.9 - Requirements and interoperability
CM 8.7.1 - Requirements and interoperability
CM 8.7 - Requirements and interoperability
CM 8.6.1 - Requirements and interoperability
CM 8.5 - Requirements and interoperability
CM 8.4 - Requirements and interoperability
CM 8.3 - Requirements and interoperability
CM 8.2 - Requirements and interoperability
CM 8.1 - Requirements and interoperability
CM 8.0 - Requirements and interoperability
CM 7.18.1 - Requirements and interoperability
CM 7.17 - Requirements and interoperability
CM 7.16.1 - Requirements and interoperability

Install Certificate Manager

Recommended setup of Certificate Manager

Hardware requirements for Certificate Manager
License file for Certificate Manager

Configure database for use with Certificate Manager

Podman-based installation

Set up Microsoft SQL server in Certificate Manager using Podman
Set up Oracle database in Certificate Manager using Podman
Set up PostgreSQL in Certificate Manager using Podman
Set up MySQL in Certificate Manager using Podman
Set up MariaDB in Certificate Manager using Podman
Set up Azure SQL in Certificate Manager using Podman

Virtual Machine (VM) based installation

Set up Microsoft SQL Server in Certificate Manager
Set up Oracle database in Certificate Manager
Set up PostgreSQL in Certificate Manager
Set up MariaDB in Certificate Manager
Set up MySQL in Certificate Manager
Set up SQLite in Certificate Manager
Set up Azure SQL in Certificate Manager

Install Certificate Manager server components using Podman

Deployment using Quadlets

Migrate existing CM installation to Podman

Migrate existing CM installation to Podman (Quadlet)

Install Certificate Manager manually

Install Key Generation System for use with Certificate Manager
Install Certificate Manager clients on Linux
Install Certificate Manager server components on Linux
Install Certificate Manager server components on Windows
Install Certificate Manager clients on Windows

Install Certificate Manager by script

Included in Certificate Manager delivery

Initialize Hardware Security Module for use in Certificate Manager

Generate DSA/EC/RSA key pair
List slot contents
Generate PKCS #10 certificate request
Install certificate
Generate AES or 3DES key
Delete object
Import a keypair
Modify object ID or label

Nexus Personal Desktop Client shortcut from Certificate Manager
pkcs12 command-line tool in Certificate Manager
ROCA scanner command-line tool in Certificate Manager
Subjectstool command-line tool in Certificate Manager
ActiveEntitiesTool command-line tool in Certificate Manager

Uninstall Certificate Manager server components and clients

Initial configuration of Certificate Manager

Configure Certificate Issuing System in Certificate Manager

Configure the Certificate Factory in Certificate Manager

Configure Expiry Check Service in Certificate Manager
Configure Key Archiving and Recovery in Certificate Manager

Configure SNMP Monitor system in Certificate Manager

Configure Certificate Manager clients

Configure Administrator's Workbench in Certificate Manager
Configure Certificate Controller in Certificate Manager
Configure Registration Authority in Certificate Manager
Configure Secure Printer in Certificate Manager

Configure CM Web Services in Certificate Manager
Configure Key Generation System in Certificate Manager

Bootstrap Certificate Manager

Produce smart cards in Certificate Manager

High availability architecture for Certificate Manager
Open source components in CM

Upgrade Certificate Manager
Upgrade Podman-based installations (Podman Quadlets)
Patch Certificate Manager

Authority administration tasks in Certificate Manager

Authority types in Certificate Manager

Administration tasks in Certificate Manager

Certificate Manager client connection tasks

Connect to a Certificate Manager host
Disconnect from a Certificate Manager host
Reconnect to a Certificate Manager host

Domain tasks in Certificate Manager

Create domain in Certificate Manager
Modify domain in Certificate Manager
Change domain view in Certificate Manager

CA tasks in Certificate Manager

Modify CA in Certificate Manager
Publish CA in Certificate Manager
Revoke CA in Certificate Manager
Create request for cross CA certificate in Certificate Manager
Import external CA certificate in Certificate Manager
Delete external CA certificate in Certificate Manager
Create CA in Certificate Manager
Process request for cross certificate in Certificate Manager

CA key tasks in Certificate Manager

Create CA key in Certificate Manager
Modify CA key in Certificate Manager

CA policy tasks in Certificate Manager

Modify certificate procedure in Certificate Manager
Modify attribute certificate procedure in Certificate Manager
Create key procedure in Certificate Manager
Modify key procedure in Certificate Manager
Modify token procedure in Certificate Manager
Create publication procedure in Certificate Manager
Modify publication procedure in Certificate Manager

Create CIL procedure in Certificate Manager

Build CIL in Certificate Manager
Modify CIL procedure in Certificate Manager

Modify distribution rule in Certificate Manager
Create certificate procedure in Certificate Manager
Create token procedure in Certificate Manager

Create CRL procedure in Certificate Manager

Build CRL in Certificate Manager
Modify CRL procedure in Certificate Manager

Create attribute certificate procedure in Certificate Manager
Create distribution rule in Certificate Manager

SA tasks in Certificate Manager

Create SA in Certificate Manager
Modify SA in Certificate Manager
Publish SA in Certificate Manager
Revoke SA in Certificate Manager
Create request for cross SA certificate in Certificate Manager
Import external SA certificate in Certificate Manager
Delete external SA certificate in Certificate Manager

SA key tasks in Certificate Manager
SA policy tasks in Certificate Manager

Officer profile tasks in Certificate Manager

Create officer profile in Certificate Manager

Constraints and roles for officers in Certificate Manager

Modify officer profile in Certificate Manager

Officer tasks in Certificate Manager

Create officer in Certificate Manager
Modify officer in Certificate Manager

Audit tasks in Certificate Manager

Log personal data in Certificate Manager
Search the CIS log in Certificate Manager

Search the request log in Certificate Manager

Types of logs in the request log in Certificate Manager

Repository tasks in Certificate Manager

Folders for Certificate Authority in Certificate Manager

Sign tasks in Certificate Manager

Sign CF and CIS configuration files in Certificate Manager

Use cases in Certificate Manager

Use case in Certificate Manager: Create tachograph certificate
Use case in Certificate Manager: Prepare for Card Verifiable Certificate
Use case in Certificate Manager: Configure Key Archiving and Recovery without issuing certificates
Use case in Certificate Manager: Cross-certify Certificate Authorities
Use case in Certificate Manager: GDPR considerations for CM
Use case in Certificate Manager: Import PGP Certification Keys
Use case in Certificate Manager: Import PKI
Use case in Certificate Manager: Replace old CA key

Registration officer tasks in Certificate Manager

General certificate tasks in Certificate Manager

Search for certificates in Certificate Manager
View and verify certificates in Certificate Manager
Publish certificates in Certificate Manager
Republish and stop publication of certificates in Certificate Manager
Revoke certificate in Certificate Manager
Put certificate on hold in Certificate Manager
Reinstate certificate in Certificate Manager
Activate OCSP in Certificate Manager for reporting of certificate status
Distribute certificate in Certificate Manager to Secunet OCSP Responder
Update revocation password in Certificate Manager
Remove identifiable information in Certificate Manager
Save certificate to file in Certificate Manager

Smart card tasks in Certificate Manager

Issue smart card certificate in Certificate Manager
Update smart card certificate in Certificate Manager

Software token tasks in Certificate Manager

Issue software token in Certificate Manager
Issue certificates from request files in Certificate Manager

Attribute certificate tasks in Certificate Manager

Issue attribute certificate in Certificate Manager
Revoke attribute certificate in Certificate Manager

PIN/PUK letter tasks in Certificate Manager

Search for PIN/PUK letter in Certificate Manager
Sort PIN/PUK letters in Certificate Manager
Print PIN/PUK letters in Certificate Manager
Confirm printing of PIN/PUK letters in Certificate Manager
Remove PIN/PUK letters in Certificate Manager
Delete PIN/PUK letters in Certificate Manager
Create PIN/PUK letter in Certificate Manager

Unblock PIN codes in Certificate Manager
Qualified certificates in Certificate Manager

Certificate Manager system administration

Start Certificate Manager server components

Start Certificate Manager server components on Windows
Start Certificate Manager server components on Linux
Start and configure password server in Certificate Manager

Backup and restore of Certificate Manager

Backup and restore of the Certificate Issuing System in Certificate Manager
Backup and restore of the Certificate Factory in Certificate Manager
Backup and restore of the Key Generation System in Certificate Manager

Administer system keys in Certificate Manager

Task 1 - Change to new CA in Certificate Manager
Task 2 - Change to another existing CA in Certificate Manager
Task 3 - Change TLS server certificate in Certificate Manager
Task 4 - Generate new system key for PIN encryption in Certificate Manager
Task 5 - Generate new KEK for KAR in Certificate Manager

Configure Certificate Manager

Certificate Manager integrations

Use the Secure Key Injection Protocol in Certificate Manager

Protocol Gateway

Install Protocol Gateway
Initial configuration of Protocol Gateway

Configuration in Protocol Gateway

Set up and use test clients in Protocol Gateway

Configuration files in Protocol Gateway

acme.properties
coap.properties
dp.properties
est.properties
sdkproxy.properties

Scramble sensitive data in configuration files in Protocol Gateway
Certificate request verifications in Protocol Gateway

Device preregistration for automated enrollment

Allowed domain names for preregistration in Certificate Manager

Use CMP or SCEP protocol in CA mode

Configuration examples in Protocol Gateway

Set up Protocol Gateway Ping
raVerified CMP requests
SCEP NDES Setup
Example: ACME configuration in Protocol Gateway

Example: SCEP configuration in Protocol Gateway

Example: SCEP NDES configuration in Protocol Gateway
Example: SCEP Intune configuration in Protocol Gateway

Example: Certificate Manager (CM) REST API configuration in Protocol Gateway
Example: EST configuration in Protocol Gateway
Example: CMP configuration in Protocol Gateway

Configure Tomcat for TLS client authentication in Protocol Gateway

PGW officer and RA keystores

Logging in Protocol Gateway
Upgrade Protocol Gateway

GDPR statement for Smart ID Certificate Manager

Certificate Manager Web UI

Certificate Manager Web UI news

Release note Certificate Manager Web UI 1.0.0

Overview of Certificate Manager Web UI
Install Certificate Manager Web UI
Certificate Manager Web UI communication flow
Open source components in Certificate Manager Web UI
Configure Certificate Manager Web UI

Nexus Timestamp Server

Nexus Timestamp Server news

Nexus Timestamp Server release notes

Release note Nexus Timestamp Server 2.3.3

Earlier release notes - Nexus Timestamp server

Release note Nexus Timestamp Server 2.3.2
Release note Nexus Timestamp Server 2.3.1
Release note Nexus Timestamp Server 2.3.0
Release note Nexus Timestamp Server 2.2.0
Release note Nexus Timestamp Server 2.2.1

Supported versions of Nexus Timestamp Server

Overview of Nexus Timestamp Server
Nexus Timestamp Server requirements and interoperability

Manage Nexus Timestamp Server

Start and stop Nexus Timestamp Server
Logging in Nexus Timestamp Server
Monitoring in Nexus Timestamp Server
Nexus Timestamp Server service administration

Configure Nexus Timestamp Server

Configuration syntax in Nexus Timestamp Server

System configuration in Nexus Timestamp Server

Configure database for Nexus Timestamp Server
Define connectors in Nexus Timestamp Server
Logical timestamp servers in Nexus Timestamp Server
Log settings in Nexus Timestamp Server
Manage truststores in Nexus Timestamp Server
Manage keystores in Nexus Timestamp Server
Configure outbound HTTP Proxy

Service configuration in Nexus Timestamp Server

Global service settings for Nexus Timestamp Server
Filter chains used in Nexus Timestamp Server
Default parameters for filters in Nexus Timestamp Server
Pre-processing filters in Nexus Timestamp Server
Policies used in Nexus Timestamp Server
Description of filters in Nexus Timestamp Server
Configure Authenticode Timestamp

Initialize Hardware Security Module in Timestamp Server

Install and upgrade Nexus Timestamp Server

Considerations after installation and configuration of Nexus Timestamp Server
Upgrade Nexus Timestamp Server
Uninstall Nexus Timestamp Server on Windows
Uninstall Nexus Timestamp Server on Linux
Nexus Timestamp Server open source components
Use Nexus Timestamp Server test client
Install Nexus Timestamp Server on Windows
Install Nexus Timestamp Server on Linux

Nexus Documentation

Smart ID

Smart ID news

Smart ID release notes

Release notes Smart ID 25.11.x

Release note Smart ID 25.11

Release notes Smart ID 25.08.x

Release note Smart ID 25.08.1
Release note Smart ID 25.08

Release notes Smart ID 24.11.x

Release note Smart ID 24.11.1
Release note Smart ID 24.11

Release notes Smart ID 23.10.x

Release note Smart ID 23.10.23

Identity Manager release note 23.10.23

Release note Smart ID 23.10.22

Identity Manager release note 23.10.22

Release note Smart ID 23.10.21

Identity Manager release note 23.10.21

Release note Smart ID 23.10.20

Identity Manager release note 23.10.20

Release note Smart ID 23.10.19

Identity Manager release note 23.10.19

Release note Smart ID 23.10.18

Identity Manager release note 23.10.18

Release note Smart ID 23.10.17

Identity Manager release note 23.10.17

Release note Smart ID 23.10.16

Identity Manager release note 23.10.16

Release note Smart ID 23.10.15

Identity Manager release note 23.10.15
Physical Access release note 23.10.15

Release note Smart ID 23.10.14

Identity Manager release note 23.10.14

Release note Smart ID 23.10.13

Identity Manager release note 23.10.13

Release note Smart ID 23.10.12

Identity Manager release note 23.10.12

Release note Smart ID 23.10.11

Identity Manager release note 23.10.11

Release note Smart ID 23.10.10

Identity Manager release note 23.10.10

Release note Smart ID 23.10.9

Identity Manager release note 23.10.9

Release note Smart ID 23.10.7

Identity Manager release note 23.10.7

Release note Smart ID 23.10.6

Identity Manager release note 23.10.6

Release note Smart ID 23.10.5

Identity Manager release note 23.10.5

Release note Smart ID 23.10.4

Physical Access release note 23.10.4

Release note Smart ID 23.10.3

Identity Manager release note 23.10.3

Release note Smart ID 23.10.2

Identity Manager release note 23.10.2

Release notes Smart ID 23.04.x

Release note Smart ID 23.04.39

Identity Manager release note 23.04.39

Release note Smart ID 23.04.38

Identity Manager release note 23.04.38

Release note Smart ID 23.04.36

Identity Manager release note 23.04.36

Release note Smart ID 23.04.35

Identity Manager release note 23.04.35

Release note Smart ID 23.04.33

Identity Manager release note 23.04.33

Release note Smart ID 23.04.32

Identity Manager release note 23.04.32

Release note Smart ID 23.04.31

Identity Manager release note 23.04.31

Release note Smart ID 23.04.30

Identity Manager release note 23.04.30

Release note Smart ID 23.04.29

Identity Manager release note 23.04.29

Release note Smart ID 23.04.28

Identity Manager release note 23.04.28

Release note Smart ID 23.04.27

Identity Manager release note 23.04.27

Release note Smart ID 23.04.26

Identity Manager release note 23.04.26

Release note Smart ID 23.04.24

Identity Manager release note 23.04.24

Release note Smart ID 23.04.23

Identity Manager release note 23.04.23

Release note Smart ID 23.04.22

Identity Manager release note 23.04.22

Release note Smart ID 23.04.19

Identity Manager release note 23.04.19

Release note Smart ID 23.04.18

Identity Manager release notes 23.04.18

Release note Smart ID 23.04.16

Identity Manager release notes 23.04.16

Release note Smart ID 23.04.14

Identity Manager release notes 23.04.14

Release note Smart ID 23.04.13

Identity Manager release notes 23.04.13

Release note Smart ID 23.04.12

Identity Manager release note 23.04.12

Release note Smart ID 23.04.11

Identity Manager release note 23.04.11

Release note Smart ID 23.04.10

Identity Manager release note 23.04.10

Release note Smart ID 23.04.9

Identity Manager release note 23.04.9

Release note Smart ID 23.04.8

Physical Access release note 23.04.8
Identity Manager release note 23.04.8

Release note Smart ID 23.04.7

Identity Manager release note 23.04.7

Release note Smart ID 23.04.6

Identity Manager release note 23.04.6

Release note Smart ID 23.04.5

Identity Manager release note 23.04.5
Physical Access release note 23.04.5

Release note Smart ID 23.04.4

Identity Manager release note 23.04.4

Release note Smart ID 23.04.3

Identity Manager release note 23.04.3

Release note Smart ID 23.04.2

Identity Manager release note 23.04.2
Physical Access release note 23.04.2

Release note Smart ID 23.04.1

Identity Manager release note 23.04.1

Release note Smart ID 23.04

Earlier release notes - Smart ID

Release notes Smart ID 22.10.x

Release note Smart ID 22.10.9

Identity Manager release note 22.10.9

Release note Smart ID 22.10.8

Identity Manager release note 22.10.8

Release note Smart ID 22.10.6

Identity Manager release note 22.10.6

Release note Smart ID 22.10.5
Release note Smart ID 22.10.3

Release note Smart ID 22.10.2

Smart ID 22.10.2 Configuration release notes

Release note Smart ID 22.10

Release notes Smart ID 22.04.x

Release note Smart ID 22.04.6
Release note Smart ID 22.04.5
Release note Smart ID 22.04.4
Release note Smart ID 22.04.3
Release note Smart ID 22.04.2
Release note Smart ID 22.04
Release note Smart ID 22.04.1

Release notes Smart ID 21.10.x

Release note Smart ID 21.10.6
Release note Smart ID 21.10
Release note Smart ID 21.10.1
Release note Smart ID 21.10.2
Release note Smart ID 21.10.4
Release note Smart ID 21.10.3
Release note Smart ID 21.10.5

Release notes Smart ID 21.04.x

Release note Smart ID 21.04.3
Release note Smart ID 21.04.2
Release note Smart ID 21.04.11
Release note Smart ID 21.04.7
Release note Smart ID 21.04.4
Release note Smart ID 21.04.6
Release note Smart ID 21.04.9
Release note Smart ID 21.04.5
Release note Smart ID 21.04.8

Release note Smart ID 21.04

Smart ID 21.04 Configuration release notes

Release note Smart ID 21.04.1

Smart ID 21.04.1 Configuration release notes

Release notes Smart ID 20.11.x

Release note Smart ID 20.11.7
Release note Smart ID 20.11.6
Release note Smart ID 20.11.4
Release note Smart ID 20.11.3
Release note Smart ID 20.11.2
Release note Smart ID 20.11.1

Release note Smart ID 20.11

Smart ID 20.11 configuration release note

Release notes Smart ID 20.06.x

Release note Smart ID 20.06.1
Release note Smart ID 20.06

Smart ID deployment configuration release note
Supported versions of Smart ID

Smart ID components - Compatibility

Identity Manager 5.2.x - Compatibility
Identity Manager 5.1.x - Compatibility
Smart ID 24.11.x - Compatibility
Smart ID 23.10.x - Compatibility
Smart ID 23.04.x - Compatibility
Smart ID 22.10.x - Compatibility
Smart ID 22.04.x - Compatibility
Smart ID 21.10.x - Compatibility
Smart ID 21.04.x - Compatibility
Smart ID 20.11.x - Compatibility
Smart ID 20.06.x - Compatibility

Smart ID architecture overview

Deploy Smart ID

Smart ID deployment recommendations
Default ports in Smart ID

Configure Smart ID

Configure and integrate Smart ID Identity Manager

Integrate Smart ID Identity Manager

Fido passkey provisioning with Microsoft Entra

Configure Smart ID Identity Manager

Add custom spring beans in Identity Manager

Chained signature for object history in Identity Manager

Chained signature throughput in Identity Manager

Configure footer text in Identity Manager Operator
Configure AsyncJobExecutor
Configure language in Smart ID Identity Manager
Configuration items in Smart ID Identity Manager
Configure Log4j2 for Identity Manager

Configure tasks (processes) in Identity Manager Operator

Configure a pre-login process for Identity Manager Operator

Configure user password hashing in Identity Manager
Enable AJP Connector in Identity Manager
Enable Process Tracker in Smart ID Identity Manager
Encrypt configuration files in Identity Manager
Integrate Nexus GO Cards to Identity Manager
List of Identity Manager system properties
Set properties for Identity Manager Admin
Set properties for Identity Manager Operator
Set up Http Clients in Identity Manager
Set up MobileIron connector
Sign configuration file in Identity Manager
Set up Microsoft Entra connector
Set up Workspace One connector
Set up AriadNext connector
Transfer configuration to Smart ID Identity Manager
Smart ID Identity Manager - Deployment REST APIs
Translate interface texts in Identity Manager
Trust Java truststore in Identity Manager

Configure Smart ID Self-Service

Configure display of open tasks in Smart ID Self-Service
Configure branding in Smart ID Self-Service
Configure language in Smart ID Self-Service
Configure log4j2 for Smart ID Self-Service
Configure menu items in Smart ID Self-Service
Configure dashboard processes in Smart ID Self-Service
Configure pre-login processes for Smart ID Self-Service
Configure logout redirect for Smart ID Self-Service
Edit photo in Smart ID Self-Service
Enable AJP Connector in Smart ID Self-Service
Set properties for Smart ID Self-Service
Trust Java truststore in Self-Service
Configure footer text in Smart ID Self-Service
Set up Smart ID Self-Service on a separate server
Configure authentication methods for Smart ID Self-Service login screen
Configure Self-Service behind a proxy
Configure Traefik between Self-Service and Identity Manager

Configure Smart ID Physical Access

Configure PACS connectors
Log in to Physical Access admin panel
Set up PACS template in Identity Manager
Verify synchronization of data between PACS system and Identity Manager

Configure Smart ID Messaging

Integrate Smart ID Messaging with other Smart ID components

Common Smart ID configuration

Add Certificate Authorities in Smart ID
Run Smart ID components in Docker Rootless mode
Configure URLs to other Smart ID components

Configure Smart ID Digital Access

Upgrade Smart ID

Upgrade Smart ID Identity Manager from 20.11 to 21.04
Upgrade Smart ID Identity Manager from 20.11.6 to 20.11.7
Upgrade Smart ID Identity Manager from 21.04 to 21.04.1
Upgrade Smart ID Identity Manager from 21.04.3 to 21.10
Upgrade Smart ID Identity Manager from 21.10 to 22.04
Upgrade Smart ID Identity Manager from 21.10.3 to 21.10.4
Upgrade Smart ID Identity Manager from 22.04 to 22.10
Upgrade Smart ID Identity Manager from 22.04.4 to 22.04.5 and 22.10 to 22.10.2
Upgrade Smart ID Identity Manager from 22.10.x to 23.04
Upgrade Smart ID Identity Manager from 23.04.x to 23.10.2
Upgrade Smart ID Identity Manager from 23.04.1 to 23.04.2
Upgrade Smart ID Identity Manager from 23.04.9 to 23.04.10
Upgrade Smart ID Identity Manager from 23.04.10 to 23.04.11
Upgrade Smart ID Identity Manager from 23.04.12 to 23.04.13
Upgrade Smart ID Identity Manager from 23.04.16 to 23.04.18
Upgrade Smart ID Identity Manager from 23.04.18 to 23.04.19
Upgrade Smart ID Identity Manager from 23.04.29 to 23.04.30
Upgrade Smart ID Identity Manager from 23.04.36 to 23.04.38
Upgrade Smart ID Identity Manager from 23.04.38 to 23.04.39
Upgrade Smart ID Identity Manager from 23.10.2 to 23.10.3
Upgrade Smart ID Identity Manager from 23.10.3 to 23.10.5
Upgrade Smart ID Identity Manager from 23.10.5 to 23.10.6
Upgrade Smart ID Identity Manager from 23.10.9 to 23.10.10
Upgrade Smart ID Identity Manager from 23.10.9 to 5.0.1
Upgrade Smart ID Identity Manager from 23.10.18 to 23.10.19
Upgrade Smart ID Identity Manager from 23.10.21 to 23.10.22
Upgrade Smart ID Identity Manager from 23.10.22 to 23.10.23
Upgrade Smart ID Identity Manager from 23.10.19 to 5.1.0
Upgrade Smart ID Identity Manager from 5.1.0 to 5.1.1
Upgrade Smart ID Identity Manager from 5.1.0 to 5.2.0

Supported versions of Smart ID components and Nexus products

General vulnerability information

XSS vulnerability in Digital Access
Critical Tomcat vulnerability (CVE-2024-56337, CVE-2024-50379)
Critical vulnerability in Traefik
Critical issue: User Certificate authentication method in Digital Access
CURL vulnerability information (CVE-2023-38545)
Nexus information on: Azure Key Leakage - Storm-0558
Apache Commons Text Vulnerability
GNU Libtasn1 vulnerability
Log4J / Log4Shell Vulnerability information
OpenSSL advisory vulnerability
Spring4Shell Vulnerability

Important information

Nexus awareness advisory on Microsoft’s update KB5014754
Important upgrade information for Digital Access

Video - Nexus Smart ID

Components

Smart ID Identity Manager

Identity Manager news

Identity Manager release notes

Identity Manager release note 5.2.0
Identity Manager release note 5.1.1
Identity Manager release note 5.1.0
Identity Manager release note 5.0.2
Identity Manager release note 5.0.1

Supported versions of Identity Manager

Identity Manager overview

Identity Manager architecture overview

High availability architecture for Identity Manager

Smart ID Agent (DataSyncProxy) in Identity Manager

Access local services from Identity Manager in the cloud

Identity Manager clients

Identity Manager Admin
Smart ID Self-Service
Identity Manager Tenant
Identity Manager Operator

Identity Manager requirements and interoperability

IDM 5.2.0 - Requirements and interoperability
IDM 5.1.0 - Requirements and interoperability
IDM 5.0.1 - Requirements and interoperability
IDM 23.10.3 - Requirements and interoperability
IDM 23.04 - Requirements and interoperability
IDM 22.10 - Requirements and interoperability

IDM requirements and interoperability - earlier releases

IDM 22.04 - Requirements and interoperability
IDM 21.10 - Requirements and interoperability
IDM 21.04 - Requirements and interoperability
IDM 20.11 - Requirements and interoperability
IDM (PRIME) 3.12.8 - Requirements and interoperability
IDM (PRIME) 3.11 - Requirements and interoperability
IDM (PRIME) 3.10 - Requirements and interoperability
IDM (PRIME) 3.9 - Requirements and interoperability
IDM (PRIME) 3.8 - Requirements and interoperability
IDM (PRIME) 3.7 - Requirements and interoperability
IDM (PRIME) 3.6 - Requirements and interoperability
IDM (PRIME) 3.5 - Requirements and interoperability

Identity Manager installation and upgrade

Identity Manager installation

Install Identity Manager

Set transaction isolation level for MS SQL when used with Identity Manager

Configure secure connection for Identity Manager

Set up certificate-based login to Identity Manager (Docker)
Set up certificate-based login to Identity Manager (WAR file)
Configure LDAPS
Configure HTTPS for Tomcat

Upgrade Identity Manager

Upgrade from PRIME 3.11 to PRIME 3.12
Upgrade from PRIME 3.10 to PRIME 3.11
Upgrade from PRIME 3.9 to PRIME 3.10
Upgrade from PRIME 3.8 to PRIME 3.9
Upgrade from PRIME 3.7 to PRIME 3.8
Upgrade from PRIME 3.6 to PRIME 3.7

Set up high availability configuration for Identity Manager

Symbolic names in Smart ID Identity Manager
Migrate from SmartACT to Identity Manager

Sign and encrypt engine in Identity Manager

Configuration of the sign and encrypt engine

Sign and encrypt engine descriptors
Configure HSM in Identity Manager
Configure custom attestation keys

Bootstrapping the sign and encrypt engine

Bootstrapping production systems

Bootstrapping table

Bootstrapping development and test systems
Sign and Encrypt engine bootstrap verification

Change encryption key of secret field store
Troubleshooting the sign and encrypt engine

Earlier versions of sign and encrypt engine in Identity Manager

IDM 23.10.x - Sign and encrypt engine in Identity Manager
IDM 23.10.x - Bootstrap the sign and encrypt engine in Identity Manager

Open source components in Identity Manager
Initial configuration of Smart ID Identity Manager (docker)
Initial configuration of Identity Manager (WAR file)
Scramble sensitive data in Identity Manager files

Identity Manager integrations

Integrate Identity Manager with certificate authority (CA)

Integrate Identity Manager with Smart ID Certificate Manager

Configure Zulu 8 JRE for TLS 1.3
Push CRL from Certificate Manager to Identity Manager
Push certificates from Certificate Manager to Identity Manager

Integrate Identity Manager with D-Trust connector
Integrate Identity Manager with IDNomic connector
Integrate Identity Manager with QuoVadis connector
Integrate Identity Manager with EJBCA connector
Use Certificate Manager for key archival and recovery for external CA
Revoking certificates

Integrate Identity Manager with Microsoft ADCS

About the Identity Manager ADCS integration

Integrate Identity Manager with Microsoft services

Integrate Identity Manager with Active Directory
Map objectSid certificate for KB5014754

Integrate Identity Manager with Card SDK

Configure card printer timeout
Set up secure communication between Identity Manager and Card SDK
Configure server-side card operations in Identity Manager
Set up server licensing for Card SDK in Identity Manager

Integrate Identity Manager with Digital Access

Connect Identity Manager to Digital Access XPI to enable user provisioning

Enable two-factor authentication to Identity Manager clients via SAML federation

Create or extract certificates for SSL and SAML

Integrate Identity Manager with Smart ID Messaging

Set up virtual smart card management in Identity Manager
Set up physical smart card management in Identity Manager

Card encoding with authenticating reverse proxy
Identity Manager Process REST API
Identity Manager Public Data REST API

Configure Identity Manager

Configuration items in Identity Manager

Data pools and data sources in Identity Manager

Configure data pools and data sources in Identity Manager

Set up mapping in Identity Manager
Set up printers in Identity Manager
Set up lookup table template in Identity Manager
Set up binary data template in Identity Manager
Set up data pool in Identity Manager
Set up data export to external data source from Identity Manager
Set up scheduled jobs in Identity Manager
Set up search configuration in Identity Manager

Processes and forms in Identity Manager

Cleanup Flowable process history in Identity Manager
Prevent user task to show up in Open tasks in Identity Manager
Set up script template in Identity Manager
Set up timeout duration for processes in Identity Manager

Standard service tasks in Identity Manager

Process - Standard service tasks in Identity Manager
Card Production - Standard service tasks in Identity Manager
Cert QuoVadis PKI - Standard service tasks in Identity Manager
Smart ID Messaging - Standard service tasks in Identity Manager
Certificates - Standard service tasks in Identity Manager
Hybrid Access Gateway - Standard service tasks in Identity Manager
Miscellaneous standard service tasks in Identity Manager
Core Objects - Standard service tasks in Identity Manager
Credentials - Standard service tasks in Identity Manager
Login - Standard service tasks in Identity Manager
PACS - Standard service tasks in Identity Manager

Troubleshooting features for Identity Manager

Project util service tasks in Identity Manager
Error handling service tasks in Identity Manager

Import and edit BPMN processes in Identity Manager

Set up process in Identity Manager

Configure display of buttons in Identity Manager

Set up form in Identity Manager
Configure process start validation

Templates in Identity Manager

Configure templates in Identity Manager

Set up card template in Identity Manager

Set up card layout template in Identity Manager

Edit a Visual id layout in Identity Manager
Set up visual ID layout in Identity Manager

Set up card encoding description template in Identity Manager

Set up elliptic curve cryptography encoding in Identity Manager

Encoding description in Identity Manager

Set up an encoding description file in Identity Manager

APDU script applications for PKI cards in Identity Manager
Block and unblock card in Identity Manager
Card initialization and credentials in Identity Manager
Certificates and keys in Identity Manager
Encoding description templates in Identity Manager
Encoding of SITHS cards with Identity Manager
Encodings using Personal Desktop Client middleware in Identity Manager
Encoding using T-Systems TCOS middleware in Identity Manager
Use Signature slot in Identity Manager
Write data objects to smart cards
Reader/card selection and information in Identity Manager
Encoding using Gemalto/SafeNet/Thales middleware in Identity Manager

Encoding using Idopte middleware in Identity Manager

JCOP 3 MI cards with Idopte middleware
JCOP 3 PGCA cards with Idopte middleware
JCOP 4.5 cards with Idopte middleware

Error handling and extended error mode in Identity Manager

Certificates requested using card production or operation tasks
Structure of an encoding description in Identity Manager

Print only back side of cards in Identity Manager
Set up Nexus GO cards layout template for Identity Manager

Set up identity template in Identity Manager
Set up requests template in Identity Manager
Set up batch order template in Identity Manager
Set up email template in Identity Manager
Set up meetings template in Identity Manager
Set up number ranges in Identity Manager
Set up PACS template

Set up report template in Identity Manager

Use JasperReports in Identity Manager

Set up state graph in Identity Manager
Set up certificate template in Identity Manager

Users and roles in Identity Manager

Configure users and roles in Identity Manager

Set permissions from Identity Manager objects
Set up policy in Identity Manager

Set permissions from Identity Manager users or roles

Limit role to access certain instances of Identity Manager client

Standard roles and bootstrap users in Identity Manager
Set up authentication profile in Identity Manager

GDPR statement for Smart ID Identity Manager

Smart ID clients

Smart ID Desktop App - Windows and macOS

Smart ID Desktop App

Smart ID Desktop App news

Smart ID Desktop App release notes

Release notes Smart ID Desktop App 2.7.1
Release notes Smart ID Desktop App 1.13.x

Earlier release notes - Smart ID Desktop App

Release notes Smart ID Desktop App 2.7.0
Release notes Smart ID Desktop App 2.6.0
Release notes Smart ID Desktop App 2.5.0
Release notes Smart ID Desktop App 2.4.0
Release notes Smart ID Desktop App 2.3.1
Release notes Smart ID Desktop App 2.3.0
Release notes Smart ID Desktop App 2.2.3
Release notes Smart ID Desktop App 2.2.2
Release notes Smart ID Desktop App 2.2.0
Release notes Smart ID Desktop App 2.1.3
Release notes Smart ID Desktop App 2.1.2
Release notes Smart ID Desktop App 2.1.1
Release notes Smart ID Desktop App 2.1

Release notes Smart ID Desktop App 2.0.x

Release notes Smart ID Desktop App 2.0.4
Release notes Smart ID Desktop App 2.0.3
Release notes Smart ID Desktop App 2.0.2
Release notes Smart ID Desktop App 2.0.1
Release notes Smart ID Desktop App 2.0

Release notes Smart ID Desktop App 1.12.x

Release note Smart ID Desktop App 1.12.2
Release note Smart ID Desktop App 1.12.1

Release notes Smart ID Desktop App 1.8.x

Release note Smart ID Desktop App 1.8.12
Release note Smart ID Desktop App 1.8.11
Release note Smart ID Desktop App 1.8.8
Release note Smart ID Desktop App 1.8.7
Release note Smart ID Desktop App 1.8.5
Release note Smart ID Desktop App 1.8.4
Release note Smart ID Desktop App 1.8.3
Release note Smart ID Desktop App 1.8.2
Release note Smart ID Desktop App 1.8.1
Release note Smart ID Desktop App 1.8

Release note Smart ID Desktop App 1.7.5
Release note Smart ID Desktop App 1.6.0

Release notes Smart ID Desktop App 1.5.x

Release note Smart ID Desktop App 1.5.6
Release note Smart ID Desktop App 1.5.1

Release notes Smart ID Desktop App 1.4.x

Release note Smart ID Desktop App 1.4.5
Release note Smart ID Desktop App 1.4.4
Release note Smart ID Desktop App 1.4.3
Release note Smart ID Desktop App 1.4.2
Release note Smart ID Desktop App 1.4.1
Release note Smart ID Desktop App 1.4

Supported versions of Smart ID Desktop App

Smart ID Desktop App overview
Smart ID Desktop App requirements and interoperability

Get started with Smart ID Desktop App

Features of Smart ID Desktop App

Windows use cases with tokens via Smart ID Desktop App

Install and upgrade Smart ID Desktop App

Install and upgrade Smart ID Desktop App (version 2.0)
Install and upgrade Smart ID Desktop App (for versions below 2.0)

General settings in Smart ID Desktop App

Smart ID Desktop App for developers

API parameters specific to Smart ID Desktop App (version 2.0)
API parameters specific to Smart ID Desktop App (for versions below 2.0)
Hybrid Profile in Smart ID Desktop App
Smart ID Desktop App metadata tool

NextVSC add-on

NextVSC news

NextVSC release notes

Release notes NextVSC 1.2.0

Earlier release notes - NextVSC

Release notes NextVSC 1.1.1
Release notes NextVSC 1.1.0
Release notes NextVSC 1.0

NextVSC supported versions

NextVSC overview and features
NextVSC requirements and interoperability
NextVSC installation and uninstallation

Smart ID Desktop App (macOS)

Smart ID Desktop App news (macOS)

Smart ID Desktop App release notes (macOS)

Smart ID Desktop App release notes (macOS) 1.3

Earlier release notes - Smart ID Desktop App (macOS)

Smart ID Desktop App release notes (macOS) 1.2

Supported versions of Smart ID Desktop App (macOS)

Features of Smart ID Desktop App (macOS)

Install and upgrade Smart ID Desktop App (macOS)

Smart ID Desktop App requirements and interoperability (macOS)

Nexus smart card middleware (macOS)

Cryptographic functions (macOS)

PKCS#11 Library (macOS)
CryptoTokenKit (macOS)

Requirements and interoperability (macOS)

Smart ID Mobile App

Smart ID Mobile App news

Android: Release notes Smart ID Mobile App 5.x.x
iOS: Release notes Smart ID Mobile App 6.x.x

Earlier release notes - Smart ID Mobile App

iOS: Release notes Smart ID Mobile App 5.x.x

Smart ID Mobile App overview

Terms and conditions for Smart ID Mobile App

Privacy policy for Smart ID Mobile App

Smart ID Mobile App requirements and interoperability

Get started with Smart ID Mobile App

Smart ID Mobile App OTP authentication

Compare Smart ID Mobile App with other mobile OTP apps
About one-time passwords (OTP)

Features of Smart ID Mobile SDK and Smart ID Mobile App
Security information for Smart ID Mobile App
Smart ID Mobile App videos
Open source components in Smart ID Mobile App
Smart ID Mobile App online authentication

Smart ID Mobile App for end users

Q & A for end users - Smart ID Mobile App
Log in to Microsoft 365 with Smart ID Mobile App online authentication
Log in to Microsoft 365 with Smart ID Mobile App OTP
Secure your Facebook account with Smart ID Mobile App authentication
Secure your Gmail account with Smart ID Mobile App authentication
Secure your Microsoft account with Smart ID Mobile App authentication

Install digital certificates using Smart ID Mobile App

Install digital certificates on Android
Install digital certificates on iOS

Smart ID Mobile App for developers

Provision mobile virtual smart card with visual ID

Requirements on content provider API

Use authentication images from a content provider service
Set up Smart ID Mobile App to start on same device

Nexus Personal Desktop Client

Personal Desktop Client news

Release notes for Personal Desktop Client

Release notes Personal Desktop Client 5.18.3

Earlier release notes - Personal Desktop Client

Release notes Personal Desktop Client 5.18.2
Release notes Personal Desktop Client 5.18.1
Release notes Personal Desktop Client 5.18.0
Release notes Personal Desktop Client 5.17.2
Release notes Personal Desktop Client 5.17.1
Release notes Personal Desktop Client 5.17.0
Release notes Personal Desktop Client 5.16.0
Release notes Personal Desktop Client 5.15.0
Release notes Personal Desktop Client 5.14.1
Release notes Personal Desktop Client 5.14
Release notes Personal Desktop Client 5.13
Release notes Personal Desktop Client 5.12
Release notes Personal Desktop Client 5.11
Release note Personal Desktop Client 5.10
Release note Personal Desktop Client 5.9

Release notes Personal Desktop Client 5.8.x

Release note Personal Desktop Client 5.8.12
Release note Personal Desktop Client 5.8.7
Release note Personal Desktop Client 5.8.6
Release note Personal Desktop Client 5.8.5
Release note Personal Desktop Client 5.8.4
Release note Personal Desktop Client 5.8.3
Release note Personal Desktop Client 5.8.2
Release note Personal Desktop Client 5.8.1
Release note Personal Desktop Client 5.8

Release notes Personal Desktop Client 5.7.x

Release note Personal Desktop Client 5.7.2
Release note Personal Desktop Client 5.7.1
Release note Personal Desktop Client 5.7

Release notes Personal Desktop Client 5.6.x

Release note Personal Desktop Client 5.6.1
Release note Personal Desktop Client 5.6

Release notes Personal Desktop Client 5.5.x

Release note Personal Desktop Client 5.5.1
Release note Personal Desktop Client 5.5

Release notes Personal Desktop Client 5.4.x

Release note Personal Desktop Client 5.4.3
Release note Personal Desktop Client 5.4.2
Release note Personal Desktop Client 5.4.1
Release note Personal Desktop Client 5.4

Release notes Personal Desktop Client 5.3.x

Release note Personal Desktop Client 5.3.1
Release note Personal Desktop Client 5.3

Release notes Personal Desktop Client 5.2.x

Release note Personal Desktop Client 5.2.3
Release note Personal Desktop Client 5.2.2
Release note Personal Desktop Client 5.2.1
Release note Personal Desktop Client 5.2

Release notes Personal Desktop Client 5.1.x

Release note Personal Desktop Client 5.1.2
Release note Personal Desktop Client 5.1.1
Release note Personal Desktop Client 5.1

Supported versions of Nexus Personal Desktop Client
Firefox interoperability for Personal Desktop Client

Personal Desktop Client overview

Cryptographic functions in Personal Desktop Client

Personal Desktop PKCS#11
Personal CSP

Minidriver component

Personal Desktop Client requirements and interoperability

Install Personal Desktop Client

Sample configuration file for Personal Desktop Client
Install Personal Desktop Client on Linux
Install Personal Desktop Client on Windows
Install Personal Desktop Client on macOS

Personal Desktop Client user's guide

Configure Personal Desktop Client

Run Personal Desktop Client in Portable mode
Configure CSP and PKCS#11 in Personal Desktop Client
Configure minidriver
PIN caching in Personal Desktop Client

Plugout web browser integration

Smart ID Messaging

Smart ID Messaging news

Hermod release notes

Release note Hermod 4.4.0
Release note Hermod 3.8.3

Earlier release notes - Hermod

Release note Hermod 4.3.1
Release note Hermod 4.3
Release note Hermod 4.2.7
Release note Hermod 4.2.5
Release note Hermod 4.2.4
Release note Hermod 4.2.3
Release note Hermod 4.2.2
Release note Hermod 4.2.0
Release note Hermod 4.1.4
Release note Hermod 4.1.3
Release note Hermod 4.1.2
Release note Hermod 4.1.1
Release note Hermod 4.0.7
Release note Hermod 4.0.6
Release note Hermod 4.0.4
Release note Hermod 3.8.1
Release note Hermod 3.8.0
Release note Hermod 3.7.0

Release notes Hermod 3.6.x

Release note Hermod 3.6.2
Release note Hermod 3.6.1
Release note Hermod 3.6.0

Release note Hermod 3.5.0
Release note Hermod 3.4.1

Release notes Hermod 3.3.x

Release note Hermod 3.3.3
Release note Hermod 3.3.2
Release note Hermod 3.3.1

Release notes Hermod 3.2.x

Release note Hermod 3.2.3
Release note Hermod 3.2.1
Release note Hermod 3.2.0

Release notes Hermod 3.1.x

Release note Hermod 3.1.5
Release note Hermod 3.1.4
Release note Hermod 3.1.3
Release note Hermod 3.1.2
Release note Hermod 3.1.1

Release note Hermod 3.0.0

Release notes Hermod 2.5.x

Release note Hermod 2.5.3
Release note Hermod 2.5.2
Release note Hermod 2.5.1
Release note Hermod 2.5.0

Release notes Hermod 2.4.x

Release note Hermod 2.4.3
Release note Hermod 2.4.2
Release note Hermod 2.4.1
Release note Hermod 2.4.0

Supported versions of Smart ID Messaging (Hermod)

Smart ID Messaging overview

Hermod

Hermod architecture

Nexus Push Service
High availability architecture for Smart ID Messaging

Install Hermod

Install Hermod 4.x (docker)
Install Hermod 4.x (WAR file)
Deploy Hermod 4.x on Kubernetes

Install and deploy Hermod 3.x

Install Hermod 3.x (docker)
Install Hermod 3.x (WAR file)
Deploy Hermod 3.x on Kubernetes

Install the Hermod test app
Add API user and callback URL in Hermod

Upgrade Hermod

Upgrade Hermod from 4.x to 4.0.7
Upgrade Hermod from 3.x to 4.x
Upgrade Hermod from 2.x to 3.x

Smart ID Messaging API overview

Hermod API

Check system status for Smart ID Messaging
Smart ID Messaging integrations

Smart ID Mobile SDK

Smart ID Mobile SDK news

Android: Release notes Smart ID Mobile SDK 3.x.x
iOS: Release notes Smart ID Mobile SDK 3.x

Smart ID Mobile SDK overview
Smart ID Mobile SDK requirements
Open source components for Smart ID Mobile SDK

Smart ID Mobile SDK for developers

Implement push notifications in a mobile app based on Smart ID Mobile SDK

Smart ID Digital Access component

Digital Access component news

Digital Access release notes

Release notes Digital Access component 6.11.1
Release notes Digital Access component 6.11

Earlier release notes - Digital Access component

Release notes Digital Access component 6.10.x

Release notes Digital Access component 6.10.3
Release notes Digital Access component 6.10.2
Release notes Digital Access component 6.10.1
Release notes Digital Access component 6.10.0

Release notes Digital Access component 6.9.x

Release notes Digital Access component 6.9.3
Release notes Digital Access component 6.9.2
Release notes Digital Access component 6.9.1
Release notes Digital Access component 6.9.0

Release notes Digital Access component 6.8.x

Release notes Digital Access component 6.8.5
Release notes Digital Access component 6.8.4
Release notes Digital Access component 6.8.3
Release notes Digital Access component 6.8.2
Release notes Digital Access component 6.8.1
Release notes Digital Access component 6.8.0

Release notes Digital Access component 6.7.x

Release notes Digital Access component 6.7.7
Release notes Digital Access component 6.7.6
Release notes Digital Access component 6.7.5
Release notes Digital Access component 6.7.4
Release notes Digital Access component 6.7.2
Release notes Digital Access component 6.7.1
Release notes Digital Access component 6.7.0

Release notes Digital Access components 6.6.x

Release notes Digital Access component 6.6.6
Release notes Digital Access component 6.6.5
Release notes Digital Access component 6.6.4
Release notes Digital Access component 6.6.2
Release notes Digital Access component 6.6.0

Release notes Digital Access component 6.5.x

Release notes Digital Access component 6.5.3
Release notes Digital Access component 6.5.2
Release notes Digital Access component 6.5.1
Release note Digital Access component 6.5.0

Release note Digital Access component 6.4.0

Release notes Digital Access component 6.3.x

Release note Digital Access component 6.3.4
Release note Digital Access component 6.3.3
Release note Digital Access component 6.3.2
Release note Digital Access component 6.3.1
Release note Digital Access component 6.3.0

Release notes Digital Access component 6.2.x

Release note Digital Access component 6.2.4
Release note Digital Access component 6.2.3
Release note Digital Access component 6.2.2
Release note Digital Access component 6.2.1
Release note Digital Access component 6.2.0

Release notes Digital Access component 6.1.x

Release note Digital Access component 6.1.4
Release note Digital Access component 6.1.3
Release note Digital Access component 6.1.2
Release note Digital Access component 6.1.1
Release note Digital Access component 6.1.0

Release notes Digital Access component 6.0.x

Release note Digital Access component 6.0.7
Release note Digital Access component 6.0.6
Release note Digital Access component 6.0.5
Release note Digital Access component 6.0.4
Release note Digital Access component 6.0.3
Release note Digital Access component 6.0.2
Release note Digital Access component 6.0.1
Release note Digital Access component 6.0

Supported versions of Digital Access component
Important note on Digital Access component and the SameSite cookie directive change

Vulnerability/patch-related information

Log 4J vulnerability information for Digital Access
Handle the CVE-2021-3449 Vulnerability
Handle the CVE-2021-3156 Vulnerability
Resolve a vulnerability in Digital Access that can result in a Denial of service
Resolve a phishing vulnerability in Hybrid Access Gateway and Digital Access

Replacing Freja JWS validation certificate

Digital Access component overview

Digital Access component architecture overview

High availability architecture for Digital Access component

Digital Access interfaces

Digital Access application portal
Digital Access Admin

Digital Access component requirements and interoperability

Deploy Digital Access component

Security standards and NIST compliance in Digital Access component
Open source components in Digital Access component
Set up high availability for Digital Access component
Adapt Digital Access component for large deployment
Do initial setup of Digital Access component
Deploy Digital Access using Podman
Deploy Digital Access component 6.9.x on Docker
Deploy Digital Access component 6.10.0 on Docker
Deploy Digital Access on RHEL 8 using Ansible and Podman
Run Digital Access component in distributed mode
Set up high availability for Digital Access deployment (bridge network)

Upgrade Digital Access component

Upgrade Digital Access component from 6.0.0 and above to 6.0.5 and above
Digital Access docker image tags
Upgrade Digital Access component from 6.0.5 or above

Docker swarm commands

Configure Digital Access

Managing logs in Digital Access

Status and reports in Digital Access

Generate reports in Digital Access

Configure Digital Access with Utimaco HSM

Authentication methods in Digital Access

Enable secure authentication for working from home
Set up authentication method in Digital Access
Set up SAML authentication context in Digital Access
Use authentication methods in Digital Access for signing over SAML

Examples - Set up Nexus OTP and Nexus Mobile Text as 2FA

Set up Nexus OTP as 2FA for Check Point administration
Set up Nexus OTP as 2FA for Cisco ASA
Set up Nexus OTP as 2FA for Citrix NetScaler
Set up Nexus OTP as 2FA for Cyberoam
Set up Nexus OTP as 2FA for Fortinet Firewall
Set up Nexus OTP as 2FA for Juniper Junos Pulse
Set up Nexus OTP as 2FA for Outlook Web Access
Set up Nexus OTP as 2FA for Palo Alto
Set up Nexus OTP as 2FA for SafeInspect
Set up Nexus OTP as 2FA for SSH login on Linux
Set up Nexus OTP as 2FA for VMware Horizon View

Smart ID Mobile App authentication

Set up Smart ID authentication
Set up NFC card authentication

Personal Desktop Client authentication

OpenID Connect federation in Digital Access component

Set up Digital Access component as OpenID provider
Set up Digital Access component as OpenID Connect relying party

Set up External Authentication Method (Digital Access part)

Nexus TruID

Brand TruID client

Nexus Mobile Text

Nexus Invisible Token

Set up Invisible token

Nexus OATH

Set up OATH tokens in Digital Access
Set up an OATH-compliant mobile/desktop app as authentication method
Use Nexus OTP display cards in Digital Access
Set up Secure activation for OATH

Nexus Password

Swedish national eID - BankID and Mobile BankID

Authenticate with Swedish BankID using the Nexus XPI Web Service (SOAP) API

Freja eID in Digital Access

Set up Freja eID authentication in Digital Access

FIDO2 authentication

Set up FIDO2 authentication

Certificate filtering for Smart ID authentication
Customize and brand Digital Access
Known limitations in Digital Access

Resources in Digital Access

Access Client in Digital Access

Install Access Client

Access rules in Digital Access

Add access rule in Digital Access

Customized resources in Digital Access
Global resource settings in Digital Access

SAML 2.0 federation in Digital Access

SAML Single Logout in Digital Access
Add a SAML 2.0 federation in Digital Access

Single sign-on in Digital Access

Single sign-on script in Digital Access
Add single sign-on domain in Digital Access

Standard resources in Digital Access

Tunnel resources in Digital Access

Tunnel sets in Digital Access

Client firewalls in Digital Access

Web resources in Digital Access component

Set up access to Apache Guacamole in Digital Access component

Set up access to Confluence with Digital Access as identity provider
Set up access to G-suite applications with Digital Access as identity provider
Set up access to Digital Access Admin

System settings in Digital Access

Access point in Digital Access, add, set up and configure
Administration service in Digital Access, set up internal and external communication
Assessment in Digital Access
Authentication service in Digital Access, add, set up, and configure

Certificates in Digital Access

Add certificates in Digital Access

Configure OAuth 2.0 in Digital Access

Enable OAuth 2.0 authorization for Digital Access administration web service

Database service in Digital Access

Configure all databases in Digital Access

Device definitions in Digital Access

Add device definition for client firewall in Digital Access

Distribution service in Digital Access, add, set up and configure

Notification settings in Digital Access

Change provisioning messages in Digital Access
Send out provisioning links from Digital Access using a bounce page
Configure TLS-enabled notification server in Digital Access
Set up email or sms notification channel in Digital Access

OATH configuration in Digital Access
Policy service in Digital Access, add, set up, and configure

Set up Smart ID Messaging in Digital Access

Architecture overview - Smart ID Messaging and Digital Access

Set up push notifications in Digital Access
Create administrative roles in Digital Access
Set up RADIUS client in Digital Access

Users in Digital Access

Set up password policy
Add alerts in Digital Access
Enable self-service password handling in Digital Access

User accounts in Digital Access

Global user account settings in Digital Access
Enable Smart ID Mobile App self-service in Digital Access

Identity orchestration in Digital Access

Add identity orchestration channel and plugin in Digital Access

Add user account in Digital Access

User groups in Digital Access

Add user group in Digital Access

User import in Digital Access

User linking in Digital Access

Link Digital Access users to a directory service like Active Directory
Repair user link in Digital Access

User storage in Digital Access

Add user storage in Digital Access

Digital Access component integrations

Digital Access Extension Programming Interfaces (XPI)

Digital Access XPI REST API

Troubleshooting Digital Access

Login issues
SSL issues
Add web resource with SNI in Digital Access
Slow login for end users in Digital Access
Troubleshooting after upgrade Digital Access to 6.0.5 and above
Extract certificate and private key from a pkcs12 container in Digital Access
SAML authentication failures

GDPR statement for Smart ID Digital Access

Smart ID Physical Access component

Smart ID Physical Access news

Physical Access installation and upgrade

Open source components in Physical Access
Define connection string to configure messaging queue in Physical Access

Configure PACS connectors in Physical Access component

Physical Access database - common parameters
Connect to a PACS system in PACS admin panel
About import and export to Physical Access

Integrate physical access control system (PACS) with Identity Manager

Set up integration with Bewator Omnis
Set up integration with UniLock
Set up integration with Interflex IF-6040
Set up PACS demo service
Set up integration with RCO R-CARD M5
Set up integration with Dorma Kaba Exos
Set up integration with Security Shells iSecure for connection with HID controllers
Set up integration with Unison Pacom
Set up integration with ASSA ARX
Set up integration with Bravida Integra
Set up integration with SiPort
Set up integration with RCO R-CARD M5 Admin API

Set up integration with Salto

Mount Salto CIFS between Linux and Windows

Set up integration with SiPass Integrated

Smart ID Certificate Manager
Nexus OCSP Responder
Nexus Timestamp Server

Nexus Card SDK

Card SDK news

Card SDK release notes

Release notes Nexus Card SDK 6.6

Earlier release notes - Card SDK

Release notes Nexus Card SDK 6.5
Release notes Nexus Card SDK 6.4
Release notes Nexus Card SDK 6.3
Release notes Nexus Card SDK 6.2
Release notes Nexus Card SDK 6.1
Release notes Nexus Card SDK 6.0

Release notes Nexus Card SDK 5.10.x

Release notes Nexus Card SDK 5.10.0.22
Release notes Nexus Card SDK 5.10

Release notes Nexus Card SDK 5.9.x

Release notes Nexus Card SDK 5.9.0.23
Release notes Nexus Card SDK 5.9

Release notes Nexus Card SDK 5.8

Release notes Nexus Card SDK 5.7.x

Release notes Nexus Card SDK 5.7.0.27
Release notes Nexus Card SDK 5.7

Release notes Nexus Card SDK 5.6.x

Release notes Nexus Card SDK 5.6.0.14
Release notes Nexus Card SDK 5.6

Supported versions of Nexus Card SDK

Card SDK overview

Install Card SDK

Licensing for Nexus Card SDK
Card SDK third party libraries

Configure Card SDK

Initial setup of Configuration Manager

Set up SSL connection to Card SDK by uploading PKCS#12 file
Encrypted web service requests

Set up card printers

Set up readers and encoders

Set up contact chip encoding device

Set up capturing
Set up logging in Nexus Card SDK

Capture images

Capture using live image camera
Capture using web camera
Capture using scanner
Read image from digital camera
Read image from file
Paste image from clipboard

Capture signatures

Design cards

Define card type

Card Table view - About and settings

Design card layout

Layout objects and their properties
Work with layout objects
Layout settings
Test card layout

Produce card

Produce card with data source
Produce card without data source

Automatically distribute Card SDK configuration
Issues accessing emulated Mifare Classic chip

Integrate Card SDK in your own application

Ways to integrate Card SDK

Integrate in Windows application

Software in client-server architecture with one fat-client

Integrate with client-server architecture
Encoding descriptions

Capture image

ImagePreview request
ImageCapture request

Produce cards
Administration
Description of file format
Trace HTTP traffic
Introduction to API
Use Nexus Card SDK with different programming languages
Define cards

Card SDK requirements and interoperability
GDPR statement for Nexus Card SDK

Third party products

Joint solutions with Nexus partners

Highly trusted PKI-based identities secured by HSM
Smooth management of certificates from trusted root

Card printers

Magicard Prima 4 and Prima 8 troubleshooting

Matica card printers

Matica XID8100
Matica XID8600
Matica XID8300

Upgrade Magicard Prima 4 to Prima 8

Nexus GO services

Nexus GO

Privacy policy for Nexus GO
Service level agreement Nexus GO
Nexus GO Terms of Use

Nexus GO Workforce

GO Workforce software installation guide
GO Workforce credentials
GO Workforce service options
GO Workforce service plans
GO Workforce service settings

Nexus GO Messaging

Nexus GO Cards

Nexus GO Cards management portal

Order cards
Anonymization in Nexus GO Cards Management portal
Data collection workflows

Nexus GO Cards visual security features
Nexus GO Cards inhouse design center
Roles in Nexus GO Cards management portal
Nexus GO Cards onboarding process

Nexus GO Cards encoding methods and card printers

Nexus Global Key Format (GKF)

Card ordering API

Nexus GO Cards reporting
Nexus GO Cards authentication
Nexus GO Cards ordering

Photo guidelines for ID cards
GDPR statement for Nexus GO Cards

Policies and terms for Nexus GO Cards

Terms and conditions for Nexus GO Cards

Data processing agreement for Nexus GO Cards
Reclaim of card in Nexus GO Cards

Privacy policy for Nexus GO Cards

Villkor för Nexus GO Cards

Personuppgiftsbiträdesavtal för Nexus GO Cards
Reklamation av kort i Nexus GO Cards

Nexus GO Cards 1.0

Mobile visual ID as complement to access card

Q & A - Mobile visual ID with Smart ID Mobile App
Frågor och svar - Mobilt visuellt ID med Smart ID Mobile App

Card ordering API 1.0

Card ordering API - examples

Features of Nexus GO Cards 1.0

Manage PINs efficiently with Nexus GO Cards 1.0
Customized reports in Nexus GO Cards 1.0
Automatic processing of serial numbers 1.0

Nexus GO Cards order portal 1.0

Roles in Nexus GO Cards
Log in to Nexus GO Cards order portal
Order cards or key fobs in Nexus GO Cards order portal
Approve order in Nexus GO Cards
View order history in Nexus GO Cards
Add or edit user in Nexus GO Cards
Add or edit delivery addresses in Nexus GO Cards
Use master accounts in Nexus GO Cards

Video tutorials for Nexus GO Cards 1.0

Nexus GO Cards 1.0 - Terms and conditions

User terms for administrator for Nexus GO Cards
User terms for a user of Nexus GO Cards
Användarvillkor för administratörer i Nexus GO Cards
Användarvillkor för användare av Nexus GO Cards

Nexus GO Cards for partners

Production Partner

Nexus GO IoT

Nexus GO Signing

Nexus GO Signing workflow
Get started with Nexus GO Signing

Nexus GO Signing portal

All tasks in Nexus GO Signing portal

Log in to Nexus GO Signing portal
Invite administrator to Nexus GO Signing portal
Sign document in the Nexus GO Signing portal
View signing requests in Nexus GO Signing portal
Download signed document from the Nexus GO Signing portal
Add email logo in Nexus GO Signing portal
Upload document to Nexus GO Signing portal

Nexus GO Signing user guide for signers
Nexus GO Signing user guide for administrators

PDF Signing API

Authenticate to the PDF Signing API
Create signing request in PDF Signing API
Sign document with PDF Signing API
Get request status or signed document
Set up PDF Signing API in Nexus GO

Sign document via Word add-in
Validate signed documents from Nexus GO Signing
Nexus GO Signing eIDAS compliancy

Terms: Nexus GO Signing

Terms and Conditions for Nexus GO Signing
Administrator Terms for Nexus GO Signing
Signatory Terms for Nexus GO Signing
Data processing agreement for Nexus GO Signing
Document management in Nexus GO Signing

GDPR statement for Nexus GO Signing

Connect identity provider to Nexus GO Signing

Set up Digital Access as identity provider to Nexus GO Signing
Set up Azure Active Directory as identity provider to Nexus GO PDF Signing
Set up Forgerock as identity provider to Nexus GO PDF Signing
Set up Microsoft AD FS as identity provider to Nexus GO Signing
Set up PhenixID Authentication Services as identity provider to Nexus GO Signing

Smart ID IoT

Telecom network PKI

Connected vehicles PKI

Identities for vehicle-to-everything - V2X PKI
Identities for Plug and Charge/vehicle-to-grid - V2G PKI
PKI for vehicle ID

Workplace PKI
Manufacturing PKI
Energy systems PKI
Research projects for IoT PKI

Use cases and modules

Smart ID Workforce use cases

Release note Smart ID Workforce use cases

Users

Users - Add-ons

Users add-on CSV

Users add-on CSV - Options

Users add-on CSV - Manage option to set the user's end state
Users add-on CSV- Manage option to add a uniqueness check
Users add-on CSV - script for managing options in Smart ID Identity Manager

Create user add-on CSV
Synchronize users from CSV file to Identity Manager
Users CSV - Start-up guide

Users add-on LDAP

Users LDAP - Start-up guide
Create user add-on LDAP
Synchronize active LDAP users to Identity Manager
Synchronize inactive LDAP users to Identity Manager

Users - Use cases for the operator

Create user
Deactivate user
Reactivate user
Lock user
Edit user
Delete user
Change password
Reset password
Edit roles
Upload default roles
Delete default roles
Create default role manually
Abort request
Create reason
Edit reason
Delete reason
Create identifier
Edit identifier
Delete identifier

Users - Use cases for the self-service user

Edit photo (self-service user)
Reset a forgotten password (self-service user)
Change password (self-service user)
Abort request (self-service user)

Users - Batch order use cases

Delete multiple users (batch order)
Reset password for multiple users (batch order)
Edit roles for multiple users (batch order)

Users - Options

Users - Manage option to have an approval step
Users - Manage option to add a uniqueness check
Users - Manage option to send a user password
Users - Manage option to set end state of the created user
Users - Manage option to set photo size
Users - script for managing options in Smart ID Identity Manager

Users - Approval handling
Users - States
Users - Start-up guide

Shared credentials

Shared credentials - Start-up guide

Cards

Cards - Start-up guide

Cards - Add-ons

Cards add-on External production

Cards add-on External production - Start-up guide

Cards add-on External production - use cases for the operator

Order card (external production)
Abort card order (external production)
Update card order (external production)

Cards add-on External production - Batch order use cases

Order multiple cards in a batch order (external production)

Cards add-on External production - Options

Cards (external production) - Manage option to add an approval step
Cards (external production) - Manage option to select production type
Cards (external production) - Manage option to queue card orders
Cards (external production) - Manage option to allow multiple card orders
Cards (external production) - Manage option to notify the user about an ordered card
Cards (external production) - Manage option to set PIN by user
Cards (external production) - Manage option to set PIN length
Cards (external production) - Manage option to set PUK length
Cards (external production) - Manage option to select what certificates to issue
Cards (external production) - script for managing options in Smart ID Identity Manager

Cards add-on External production - States

Cards - Use cases for the operator

Request card
Issue card
Activate card
Edit card
Deactivate card
Reactivate card
Lock card
Unblock card remote
Abort card request

Cards - Use cases for the self-service user

Unblock/change PIN for a card (self-service user)
Unblock PIN offline (self-service user)

Cards - Batch order use cases

Request multiple cards (batch order)
Issue multiple cards (batch order)

Cards - Options

Cards - Manage option to add an approval step
Cards - Manage option to allow multiple active cards
Cards - Manage option to send PIN information
Cards - Manage option to set PIN length
Cards - Manage option to send PUK information
Cards - Manage option to set PUK length
Cards - Manage option to select what certificates to issue
Cards - Manage option to decide how to recover encryption certificates
Cards - Manage option to set the card end state
Cards - Manage option to set the certificate end state
Cards - script for managing options in Smart ID Identity Manager

Cards - Options for expiring cards

Cards - script for managing options for expiring cards

Cards - States
Certificates - States
Cards - Approval handling

Temporary cards

Temporary cards - Start-up guide

Temporary cards - Add-ons

Temporary cards add-on External production

Temporary cards add-on External production - Start-up guide

Temporary cards add-on External production - use cases for the operator

Order temporary cards (external production)
Initialize temporary card (external production)
Abort temporary card order (external production)

Temporary cards add-on External production - Options

Temporary cards (external production) - Manage option to select production type
Temporary cards (external production) - Manage option to queue temporary card
Temporary cards (external production) - Manage option to set PIN length
Temporary cards (external production) - Manage option to set PUK length
Temporary cards (external production) - script for managing options in Smart ID Identity Manager

Temporary cards add-on External production - States

Temporary cards - Use cases for the operator

Withdraw temporary card
Request temporary cards
Issue multiple temporary cards (batch order)
Abort temporary card
Extend temporary card
Lock temporary card
Assign temporary card

Temporary cards - Options

Temporary cards - Manage option to send PIN information
Temporary cards - Manage option to allow multiple active temporary cards
Temporary cards - script for managing options in Smart ID Identity Manager
Temporary cards - Manage option to select what certificates to issue
Temporary cards - Manage option to set PIN length
Temporary cards - Manage option to decide how long the temporary card shall be valid
Temporary cards - Manage option to set PUK length
Temporary cards - Manage option to encode a temporary card

Temporary cards - Options for expiring temporary cards

Temporary cards - script for managing options for expiring temporary cards

Temporary cards - States

Mobile ID

Mobile ID - Start-up guide

Mobile ID - Use cases for the operator

Supply mobile ID for a user
Lock mobile ID for a user
Delete mobile ID
Deactivate Mobile ID
Reactivate Mobile ID

Mobile ID - Use cases for the self-service user

Lock mobile ID (self-service user)
Get mobile ID (self-service user)

Mobile ID - Options

Mobile ID - Manage option to decide how to recover encryption certificates
Mobile ID - script for managing options in Smart ID Identity Manager
Mobile ID - Manage option to notify the user about a creation of a mobile ID
Mobile ID - Manage option to decide how long the Mobile ID shall be valid
Mobile ID - Manage option to set properties related to the user
Mobile ID - Manage option to select what certificates to issue
Mobile ID - Manage option where to show the QR code

Mobile ID - States

Mobile ID - Options for expiring mobile IDs

Mobile ID - script for managing options for expiring mobile IDs

Virtual smart card

Virtual smart card - Start-up guide

Virtual smart card - Use cases for the operator

Lock virtual smart card
Deactivate virtual smart card
Reactivate virtual smart card
Delete virtual smart card

Virtual smart card - Use cases for the self-service user

Get virtual smart card (self-service user)
Change PIN for a virtual smart card (self-service user)
Lock virtual smart card (self-service user)

Virtual smart card - Options

Virtual smart card - Manage option to control the PIN complexity
Virtual smart card - Manage option to select what certificates to issue
Virtual smart card - script for managing options in Smart ID Identity Manager
Virtual smart card - Manage option to set properties related to the user
Virtual smart card - Manage option to decide how long the virtual smart card shall be valid

Virtual smart card - States

Virtual smart card - Options for expiring virtual smart cards

Virtual smart card - script for managing options for expiring virtual smart cards

Roles in Smart ID use cases
Roles vs use cases in Smart ID

Smart ID Workplace use cases

Release note Smart ID Workplace use cases
Workplace - Start-up guide

Workplace - Use cases

Assets use cases

Create asset category
Edit asset category
Delete asset category
Create asset
Create reason - deactivate asset
Deactivate asset
Delete reason - deactivate asset
Edit asset
Import assets
Manage asset
Reactivate asset

Certificate profile use cases

Lock certificate
Retrieve certificate
Assign certificate profile
Deactivate certificate profile
Edit certificate profile
Reregister SCEP
Enroll profile
Import certificate using REST API
Delete certificate profile
Reactivate certificate profile
Create certificate profile
Deregister SCEP
Renew P12 certificate

Domain policy use cases

Reactivate domain policy
Deactivate domain policy
Create domain policy
Edit domain policy

Other use cases

Fetch certificates via REST API
Assign system administrator role
Batch order - Lock certificates
Batch sync expired certificates

Workplace - Approval handling

Workplace - States
Workplace - Roles
Workplace - Roles and use cases

Smart ID Workforce modules

Product sheet for Smart ID Workforce

Smart ID Workforce modules overview

Physical ID

Identity management - Physical ID

Automatically import identity data - Physical ID
Automatically deactivate card - Physical ID
Person uploads photo - Physical ID
Enter person data manually - Physical ID
Edit roles for person - Physical ID
Set password for person - Physical ID
Reset forgotten password - Physical ID
Person is on temporary leave - Physical ID
Person returns from temporary leave - Physical ID
Enable person for Digital Access - Physical ID

Card management - Physical ID

Request or issue card - Physical ID
Mass-produce cards - Physical ID
Person returns temporary card - Physical ID
Issue temporary card - Physical ID
Replace card - Physical ID
Activate card - Physical ID
Lock card - Physical ID
Deactivate card - Physical ID
Reactivate card - Physical ID

Physical ID specification

Roles in Physical ID
Physical ID Card layouts and technology
Physical ID - Self-Service

Digital ID

Identity management - Digital ID

Automatically import identity data - Digital ID
Automatically deactivate card - Digital ID
Person uploads photo - Digital ID
Enter person data manually - Digital ID
Edit roles for person - Digital ID
Set password for person - Digital ID
Reset forgotten password - Digital ID
Person is on temporary leave - Digital ID
Person returns from temporary leave - Digital ID
Enable person for Digital Access - Digital ID

Compare 2FA methods

Smart card management

Mass-produce smart cards - Digital ID
About smart cards
Renew smart card - Digital ID
Unblock PKI PIN for smart card - online - Digital ID
Replace smart card - Digital ID
Deactivate smart card - Digital ID
Issue temporary smart card - Digital ID
Activate smart card - Digital ID
Mass-produce employee temporary smart cards - Digital ID
Request or issue smart card - Digital ID
Reactivate smart card - Digital ID
Unblock PKI PIN for smart card - offline - Digital ID
Renew smart card - Self-Service - Digital ID
Change PKI PIN for smart card - Digital ID
Create temporary smart card - Digital ID
Lock smart card - Digital ID
Person returns temporary smart card - Digital ID

Mobile virtual smart card management

About mobile virtual smart cards
Enable person to use mobile ID
Issue mobile ID to person
Lock mobile ID
Renew mobile ID
Person forgot the mobile ID PIN
Person has changed phone

Software token management

About software tokens
Person forgot software token password
Recover software tokens
Renew software token
Renew software token - self-service
Replace all software tokens
Request or issue software token
Revoke all software tokens
Send encryption software tokens to stand-in

Server certificate management

Expiry check server and certificates
Issue server certificate in PKCS#10 format
Issue server certificate in PKCS#12 format
Lock server
Lock single server certificate
Modify server information
Register server
Renew server certificate via PKCS#10 request
Renew server certificate via PKCS#12 request

Virtual smart card management

About virtual smart cards
Change virtual smart card PIN
Delete virtual smart cards
Enable or disable person to manage virtual smart card
Issue certificates to virtual smart card
Lock virtual smart cards
Renew virtual smart card
Replace virtual smart card
Reset virtual smart card PIN

Secure email communication using S/MIME in Smart ID

Digital ID specification

Roles in Digital ID
Digital ID Card layouts and technology
Digital ID - Self-Service

Physical access

Identity management - Physical access

Enter person data manually - Physical access
Person returns from temporary leave - Physical access
Person is on temporary leave - Physical access

Card management - Physical access

Deactivate smart card - Physical access
Replace smart card - Physical access
Lock smart card - Physical access
Issue temporary smart card - Physical access
Mass-produce employee temporary smart cards - Physical access
Person returns temporary smart card - Physical access
Create temporary smart card - Physical access
Activate smart card - Physical access

Physical access entitlement

Request entitlement for employee
Withdraw entitlement from employee
Change entitlement approver for employee
Disable entitlement requests for employee
Activate entitlement
Deactivate entitlement
Edit entitlement
Lock entitlement
Create entitlement approver or responsible
Activate entitlement approver or responsible
Deactivate entitlement approver or responsible

Access group management - Physical access

Create access group
Update access group
Delete access group
Assign persons to access group
Withdraw group membership

Access rule management - Physical access

Create access rule
Assign entitlements to access rule
Assign access groups to access rule
Delete access rule
Withdraw entitlements from access rule

Physical access specification

Roles in Physical access

Digital access

Strong authentication with Smart ID Digital access

Available 2FA methods with Digital access

Mobile one-time passwords (OTP)
Hardware one-time password (OTP) tokens
One-time passwords (OTP) in Nexus' Digital access platform

Protect digital resources with multifactor authentication
Risk-appropriate authentication with Digital access
Simple management of users and passwords in Digital access
What is multifactor authentication?

Corporate PKI
ACME support in Nexus Smart ID
Smart ID Cards and credentials

General information

For partners

Terms and GDPR Statements

GDPR for Nexus GO services - FAQ
GDPR för Nexus GO webbtjänster - vanliga frågor
Terms: Nexus GO Authentication with Swedish BankID (in Swedish)

About Nexus Support

Nexus Support Portal

Video instructions for the support portal
Written instructions for the support portal
Questions and answers about Nexus Support

About Nexus Group
Java support

End of Sale and End of Life statements

End of Life for PRIME 3.12
End of Life for Nexus CardDesk versions R1 and R2
End of Life for Nexus IDCARD
End of Life for Nexus ProACT
End of Life for Nexus SE46
End of Life for Nexus SmartACT
End of Life for Nexus TruID
End of Life for PortWise AMAS
End of Sale for card readers
End of Sale for Cotag
End of Sale for Nexus CardDesk versions R1 and R2
End of Sale for Nexus Cidron
End of Sale for Nexus IDC 2.x
End of Sale for Nexus IDCARD
End of Sale for Nexus SE46
End of Sale for Nexus Service Station
End of Sale for Nexus SmartACT
End of Sale for Nexus TruID
End of Sale for Quick-Rot
End of support for Ubuntu 16.04 LTS for coming release of Personal Desktop Client
Nexus policy and lifecycle definitions

General instructions

Harden Tomcat
Modify product configurations to avoid Tomcat vulnerability Ghostcat

Set up smart card logon in Active Directory

Manually integrate third party CA in Active Directory
Publish CA certificates to clients
Issue domain controller certificates

Troubleshoot smart card logon to Windows

Supportticket für CardDesk erstellen
About Nexus Documentation

Nexus OCSP Responder

Nexus OCSP Responder news

OCSP Responder release notes

Release note Nexus OCSP Responder 6.4.1
OCSP Responder container release notes 6.4.1-1

Earlier release notes - Nexus OCSP Responder

Release note Nexus OCSP Responder 6.4.0
OCSP Responder container release notes 6.4.0-1
Release note Nexus OCSP Responder 6.3.0
OCSP Responder container release notes 6.3.0-1
Release note Nexus OCSP Responder 6.2.8
Release note Nexus OCSP Responder 6.2.7
Release note Nexus OCSP Responder 6.2.6

Release notes Nexus OCSP Responder 6.2.x

Release note Nexus OCSP Responder 6.2.5
Release note Nexus OCSP Responder 6.2.4
Release note Nexus OCSP Responder 6.2.3
Release note Nexus OCSP Responder 6.2.2
Release note Nexus OCSP Responder 6.2

Release note Nexus OCSP Responder 6.1

Supported versions of Nexus OCSP Responder

Nexus OCSP Responder overview

Nexus OCSP Responder architecture overview
Common Criteria certification for Nexus OCSP Responder

Nexus OCSP Responder - requirements and interoperability

Nexus OCSP Responder 6.4.1 - requirements and interoperability

Nexus OCSP requirements and interoperability - earlier versions

Nexus OCSP Responder 6.4.0 - requirements and interoperability
Nexus OCSP Responder 6.3.0 - requirements and interoperability

Use cases for OCSP Responder

Install Nexus OCSP Responder

Install Nexus OCSP Responder on Windows
Install Nexus OCSP Responder on Linux
Install Nexus OCSP Responder on Podman
Included in Nexus OCSP Responder delivery
Open source components in Nexus OCSP Responder

Deployment scenario

OCSP proxying
Response caching

Upgrade Nexus OCSP Responder

Upgrade Nexus OCSP Responder on Windows
Upgrade Nexus OCSP Responder on Linux
Upgrade Nexus OCSP Responder on Podman

Migrate existing OCSP installation

Migrate to Podman Quadlets

Configure Nexus OCSP Responder

Certificate lookup section
Revocation information
Default OCSP configuration
Back end client section
Certificate cache section
Trust store
System management section
Validation section
OCSP response cache section
Set up hardware token
Adding key pairs to Cryptographic Library

OCSP responder section

OCSP Fallback Responder

Key management section
OCSP Responder Signer Expiry Check

Nexus OCSP Responder descriptions and workflow

Introduction to the OCSP protocol
Introduction to LDAP
Introduction to PKCS#11
Freshness proof
Log messages and log filters
Access control and billing
Distinguished name matching
Validation process
Workflow for Nexus OCSP Responders
Certificate Issuance List - CIL
Request status for Nexus OCSP Responder

Main

Smart ID

Smart ID news

Smart ID release notes

Release notes Smart ID 25.11.x

Release note Smart ID 25.11

Release notes Smart ID 25.08.x

Release note Smart ID 25.08.1
Release note Smart ID 25.08

Release notes Smart ID 24.11.x

Release note Smart ID 24.11.1
Release note Smart ID 24.11

Release notes Smart ID 23.10.x

Release note Smart ID 23.10.23

Identity Manager release note 23.10.23

Release note Smart ID 23.10.22

Identity Manager release note 23.10.22

Release note Smart ID 23.10.21

Identity Manager release note 23.10.21

Release note Smart ID 23.10.20

Identity Manager release note 23.10.20

Release note Smart ID 23.10.19

Identity Manager release note 23.10.19

Release note Smart ID 23.10.18

Identity Manager release note 23.10.18

Release note Smart ID 23.10.17

Identity Manager release note 23.10.17

Release note Smart ID 23.10.16

Identity Manager release note 23.10.16

Release note Smart ID 23.10.15

Identity Manager release note 23.10.15
Physical Access release note 23.10.15

Release note Smart ID 23.10.14

Identity Manager release note 23.10.14

Release note Smart ID 23.10.13

Identity Manager release note 23.10.13

Release note Smart ID 23.10.12

Identity Manager release note 23.10.12

Release note Smart ID 23.10.11

Identity Manager release note 23.10.11

Release note Smart ID 23.10.10

Identity Manager release note 23.10.10

Release note Smart ID 23.10.9

Identity Manager release note 23.10.9

Release note Smart ID 23.10.7

Identity Manager release note 23.10.7

Release note Smart ID 23.10.6

Identity Manager release note 23.10.6

Release note Smart ID 23.10.5

Identity Manager release note 23.10.5

Release note Smart ID 23.10.4

Physical Access release note 23.10.4

Release note Smart ID 23.10.3

Identity Manager release note 23.10.3

Release note Smart ID 23.10.2

Identity Manager release note 23.10.2

Release notes Smart ID 23.04.x

Release note Smart ID 23.04.39

Identity Manager release note 23.04.39

Release note Smart ID 23.04.38

Identity Manager release note 23.04.38

Release note Smart ID 23.04.36

Identity Manager release note 23.04.36

Release note Smart ID 23.04.35

Identity Manager release note 23.04.35

Release note Smart ID 23.04.33

Identity Manager release note 23.04.33

Release note Smart ID 23.04.32

Identity Manager release note 23.04.32

Release note Smart ID 23.04.31

Identity Manager release note 23.04.31

Release note Smart ID 23.04.30

Identity Manager release note 23.04.30

Release note Smart ID 23.04.29

Identity Manager release note 23.04.29

Release note Smart ID 23.04.28

Identity Manager release note 23.04.28

Release note Smart ID 23.04.27

Identity Manager release note 23.04.27

Release note Smart ID 23.04.26

Identity Manager release note 23.04.26

Release note Smart ID 23.04.24

Identity Manager release note 23.04.24

Release note Smart ID 23.04.23

Identity Manager release note 23.04.23

Release note Smart ID 23.04.22

Identity Manager release note 23.04.22

Release note Smart ID 23.04.19

Identity Manager release note 23.04.19

Release note Smart ID 23.04.18

Identity Manager release notes 23.04.18

Release note Smart ID 23.04.16

Identity Manager release notes 23.04.16

Release note Smart ID 23.04.14

Identity Manager release notes 23.04.14

Release note Smart ID 23.04.13

Identity Manager release notes 23.04.13

Release note Smart ID 23.04.12

Identity Manager release note 23.04.12

Release note Smart ID 23.04.11

Identity Manager release note 23.04.11

Release note Smart ID 23.04.10

Identity Manager release note 23.04.10

Release note Smart ID 23.04.9

Identity Manager release note 23.04.9

Release note Smart ID 23.04.8

Physical Access release note 23.04.8
Identity Manager release note 23.04.8

Release note Smart ID 23.04.7

Identity Manager release note 23.04.7

Release note Smart ID 23.04.6

Identity Manager release note 23.04.6

Release note Smart ID 23.04.5

Identity Manager release note 23.04.5
Physical Access release note 23.04.5

Release note Smart ID 23.04.4

Identity Manager release note 23.04.4

Release note Smart ID 23.04.3

Identity Manager release note 23.04.3

Release note Smart ID 23.04.2

Identity Manager release note 23.04.2
Physical Access release note 23.04.2

Release note Smart ID 23.04.1

Identity Manager release note 23.04.1

Release note Smart ID 23.04

Earlier release notes - Smart ID

Release notes Smart ID 22.10.x

Release note Smart ID 22.10.9

Identity Manager release note 22.10.9

Release note Smart ID 22.10.8

Identity Manager release note 22.10.8

Release note Smart ID 22.10.6

Identity Manager release note 22.10.6

Release note Smart ID 22.10.5
Release note Smart ID 22.10.3

Release note Smart ID 22.10.2

Smart ID 22.10.2 Configuration release notes

Release note Smart ID 22.10

Release notes Smart ID 22.04.x

Release note Smart ID 22.04.6
Release note Smart ID 22.04.5
Release note Smart ID 22.04.4
Release note Smart ID 22.04.3
Release note Smart ID 22.04.2
Release note Smart ID 22.04
Release note Smart ID 22.04.1

Release notes Smart ID 21.10.x

Release note Smart ID 21.10.6
Release note Smart ID 21.10
Release note Smart ID 21.10.1
Release note Smart ID 21.10.2
Release note Smart ID 21.10.4
Release note Smart ID 21.10.3
Release note Smart ID 21.10.5

Release notes Smart ID 21.04.x

Release note Smart ID 21.04.3
Release note Smart ID 21.04.2
Release note Smart ID 21.04.11
Release note Smart ID 21.04.7
Release note Smart ID 21.04.4
Release note Smart ID 21.04.6
Release note Smart ID 21.04.9
Release note Smart ID 21.04.5
Release note Smart ID 21.04.8

Release note Smart ID 21.04

Smart ID 21.04 Configuration release notes

Release note Smart ID 21.04.1

Smart ID 21.04.1 Configuration release notes

Release notes Smart ID 20.11.x

Release note Smart ID 20.11.7
Release note Smart ID 20.11.6
Release note Smart ID 20.11.4
Release note Smart ID 20.11.3
Release note Smart ID 20.11.2
Release note Smart ID 20.11.1

Release note Smart ID 20.11

Smart ID 20.11 configuration release note

Release notes Smart ID 20.06.x

Release note Smart ID 20.06.1
Release note Smart ID 20.06

Smart ID deployment configuration release note
Supported versions of Smart ID

Smart ID components - Compatibility

Identity Manager 5.2.x - Compatibility
Identity Manager 5.1.x - Compatibility
Smart ID 24.11.x - Compatibility
Smart ID 23.10.x - Compatibility
Smart ID 23.04.x - Compatibility
Smart ID 22.10.x - Compatibility
Smart ID 22.04.x - Compatibility
Smart ID 21.10.x - Compatibility
Smart ID 21.04.x - Compatibility
Smart ID 20.11.x - Compatibility
Smart ID 20.06.x - Compatibility

Smart ID architecture overview

Deploy Smart ID

Smart ID deployment recommendations
Default ports in Smart ID

Configure Smart ID

Configure and integrate Smart ID Identity Manager

Integrate Smart ID Identity Manager

Fido passkey provisioning with Microsoft Entra

Configure Smart ID Identity Manager

Add custom spring beans in Identity Manager

Chained signature for object history in Identity Manager

Chained signature throughput in Identity Manager

Configure footer text in Identity Manager Operator
Configure AsyncJobExecutor
Configure language in Smart ID Identity Manager
Configuration items in Smart ID Identity Manager
Configure Log4j2 for Identity Manager

Configure tasks (processes) in Identity Manager Operator

Configure a pre-login process for Identity Manager Operator

Configure user password hashing in Identity Manager
Enable AJP Connector in Identity Manager
Enable Process Tracker in Smart ID Identity Manager
Encrypt configuration files in Identity Manager
Integrate Nexus GO Cards to Identity Manager
List of Identity Manager system properties
Set properties for Identity Manager Admin
Set properties for Identity Manager Operator
Set up Http Clients in Identity Manager
Set up MobileIron connector
Sign configuration file in Identity Manager
Set up Microsoft Entra connector
Set up Workspace One connector
Set up AriadNext connector
Transfer configuration to Smart ID Identity Manager
Smart ID Identity Manager - Deployment REST APIs
Translate interface texts in Identity Manager
Trust Java truststore in Identity Manager

Configure Smart ID Self-Service

Configure display of open tasks in Smart ID Self-Service
Configure branding in Smart ID Self-Service
Configure language in Smart ID Self-Service
Configure log4j2 for Smart ID Self-Service
Configure menu items in Smart ID Self-Service
Configure dashboard processes in Smart ID Self-Service
Configure pre-login processes for Smart ID Self-Service
Configure logout redirect for Smart ID Self-Service
Edit photo in Smart ID Self-Service
Enable AJP Connector in Smart ID Self-Service
Set properties for Smart ID Self-Service
Trust Java truststore in Self-Service
Configure footer text in Smart ID Self-Service
Set up Smart ID Self-Service on a separate server
Configure authentication methods for Smart ID Self-Service login screen
Configure Self-Service behind a proxy
Configure Traefik between Self-Service and Identity Manager

Configure Smart ID Physical Access

Configure PACS connectors
Log in to Physical Access admin panel
Set up PACS template in Identity Manager
Verify synchronization of data between PACS system and Identity Manager

Configure Smart ID Messaging

Integrate Smart ID Messaging with other Smart ID components

Common Smart ID configuration

Add Certificate Authorities in Smart ID
Run Smart ID components in Docker Rootless mode
Configure URLs to other Smart ID components

Configure Smart ID Digital Access

Upgrade Smart ID

Upgrade Smart ID Identity Manager from 20.11 to 21.04
Upgrade Smart ID Identity Manager from 20.11.6 to 20.11.7
Upgrade Smart ID Identity Manager from 21.04 to 21.04.1
Upgrade Smart ID Identity Manager from 21.04.3 to 21.10
Upgrade Smart ID Identity Manager from 21.10 to 22.04
Upgrade Smart ID Identity Manager from 21.10.3 to 21.10.4
Upgrade Smart ID Identity Manager from 22.04 to 22.10
Upgrade Smart ID Identity Manager from 22.04.4 to 22.04.5 and 22.10 to 22.10.2
Upgrade Smart ID Identity Manager from 22.10.x to 23.04
Upgrade Smart ID Identity Manager from 23.04.x to 23.10.2
Upgrade Smart ID Identity Manager from 23.04.1 to 23.04.2
Upgrade Smart ID Identity Manager from 23.04.9 to 23.04.10
Upgrade Smart ID Identity Manager from 23.04.10 to 23.04.11
Upgrade Smart ID Identity Manager from 23.04.12 to 23.04.13
Upgrade Smart ID Identity Manager from 23.04.16 to 23.04.18
Upgrade Smart ID Identity Manager from 23.04.18 to 23.04.19
Upgrade Smart ID Identity Manager from 23.04.29 to 23.04.30
Upgrade Smart ID Identity Manager from 23.04.36 to 23.04.38
Upgrade Smart ID Identity Manager from 23.04.38 to 23.04.39
Upgrade Smart ID Identity Manager from 23.10.2 to 23.10.3
Upgrade Smart ID Identity Manager from 23.10.3 to 23.10.5
Upgrade Smart ID Identity Manager from 23.10.5 to 23.10.6
Upgrade Smart ID Identity Manager from 23.10.9 to 23.10.10
Upgrade Smart ID Identity Manager from 23.10.9 to 5.0.1
Upgrade Smart ID Identity Manager from 23.10.18 to 23.10.19
Upgrade Smart ID Identity Manager from 23.10.21 to 23.10.22
Upgrade Smart ID Identity Manager from 23.10.22 to 23.10.23
Upgrade Smart ID Identity Manager from 23.10.19 to 5.1.0
Upgrade Smart ID Identity Manager from 5.1.0 to 5.1.1
Upgrade Smart ID Identity Manager from 5.1.0 to 5.2.0

Supported versions of Smart ID components and Nexus products

General vulnerability information

XSS vulnerability in Digital Access
Critical Tomcat vulnerability (CVE-2024-56337, CVE-2024-50379)
Critical vulnerability in Traefik
Critical issue: User Certificate authentication method in Digital Access
CURL vulnerability information (CVE-2023-38545)
Nexus information on: Azure Key Leakage - Storm-0558
Apache Commons Text Vulnerability
GNU Libtasn1 vulnerability
Log4J / Log4Shell Vulnerability information
OpenSSL advisory vulnerability
Spring4Shell Vulnerability

Important information

Nexus awareness advisory on Microsoft’s update KB5014754
Important upgrade information for Digital Access

Video - Nexus Smart ID

Components

Smart ID Identity Manager

Identity Manager news

Identity Manager release notes

Identity Manager release note 5.2.0
Identity Manager release note 5.1.1
Identity Manager release note 5.1.0
Identity Manager release note 5.0.2
Identity Manager release note 5.0.1

Supported versions of Identity Manager

Identity Manager overview

Identity Manager architecture overview

High availability architecture for Identity Manager

Smart ID Agent (DataSyncProxy) in Identity Manager

Access local services from Identity Manager in the cloud

Identity Manager clients

Identity Manager Admin
Smart ID Self-Service
Identity Manager Tenant
Identity Manager Operator

Identity Manager requirements and interoperability

IDM 5.2.0 - Requirements and interoperability
IDM 5.1.0 - Requirements and interoperability
IDM 5.0.1 - Requirements and interoperability
IDM 23.10.3 - Requirements and interoperability
IDM 23.04 - Requirements and interoperability
IDM 22.10 - Requirements and interoperability

IDM requirements and interoperability - earlier releases

IDM 22.04 - Requirements and interoperability
IDM 21.10 - Requirements and interoperability
IDM 21.04 - Requirements and interoperability
IDM 20.11 - Requirements and interoperability
IDM (PRIME) 3.12.8 - Requirements and interoperability
IDM (PRIME) 3.11 - Requirements and interoperability
IDM (PRIME) 3.10 - Requirements and interoperability
IDM (PRIME) 3.9 - Requirements and interoperability
IDM (PRIME) 3.8 - Requirements and interoperability
IDM (PRIME) 3.7 - Requirements and interoperability
IDM (PRIME) 3.6 - Requirements and interoperability
IDM (PRIME) 3.5 - Requirements and interoperability

Identity Manager installation and upgrade

Identity Manager installation

Install Identity Manager

Set transaction isolation level for MS SQL when used with Identity Manager

Configure secure connection for Identity Manager

Set up certificate-based login to Identity Manager (Docker)
Set up certificate-based login to Identity Manager (WAR file)
Configure LDAPS
Configure HTTPS for Tomcat

Upgrade Identity Manager

Upgrade from PRIME 3.11 to PRIME 3.12
Upgrade from PRIME 3.10 to PRIME 3.11
Upgrade from PRIME 3.9 to PRIME 3.10
Upgrade from PRIME 3.8 to PRIME 3.9
Upgrade from PRIME 3.7 to PRIME 3.8
Upgrade from PRIME 3.6 to PRIME 3.7

Set up high availability configuration for Identity Manager

Symbolic names in Smart ID Identity Manager
Migrate from SmartACT to Identity Manager

Sign and encrypt engine in Identity Manager

Configuration of the sign and encrypt engine

Sign and encrypt engine descriptors
Configure HSM in Identity Manager
Configure custom attestation keys

Bootstrapping the sign and encrypt engine

Bootstrapping production systems

Bootstrapping table

Bootstrapping development and test systems
Sign and Encrypt engine bootstrap verification

Change encryption key of secret field store
Troubleshooting the sign and encrypt engine

Earlier versions of sign and encrypt engine in Identity Manager

IDM 23.10.x - Sign and encrypt engine in Identity Manager
IDM 23.10.x - Bootstrap the sign and encrypt engine in Identity Manager

Open source components in Identity Manager
Initial configuration of Smart ID Identity Manager (docker)
Initial configuration of Identity Manager (WAR file)
Scramble sensitive data in Identity Manager files

Identity Manager integrations

Integrate Identity Manager with certificate authority (CA)

Integrate Identity Manager with Smart ID Certificate Manager

Configure Zulu 8 JRE for TLS 1.3
Push CRL from Certificate Manager to Identity Manager
Push certificates from Certificate Manager to Identity Manager

Integrate Identity Manager with D-Trust connector
Integrate Identity Manager with IDNomic connector
Integrate Identity Manager with QuoVadis connector
Integrate Identity Manager with EJBCA connector
Use Certificate Manager for key archival and recovery for external CA
Revoking certificates

Integrate Identity Manager with Microsoft ADCS

About the Identity Manager ADCS integration

Integrate Identity Manager with Microsoft services

Integrate Identity Manager with Active Directory
Map objectSid certificate for KB5014754

Integrate Identity Manager with Card SDK

Configure card printer timeout
Set up secure communication between Identity Manager and Card SDK
Configure server-side card operations in Identity Manager
Set up server licensing for Card SDK in Identity Manager

Integrate Identity Manager with Digital Access

Connect Identity Manager to Digital Access XPI to enable user provisioning

Enable two-factor authentication to Identity Manager clients via SAML federation

Create or extract certificates for SSL and SAML

Integrate Identity Manager with Smart ID Messaging

Set up virtual smart card management in Identity Manager
Set up physical smart card management in Identity Manager

Card encoding with authenticating reverse proxy
Identity Manager Process REST API
Identity Manager Public Data REST API

Configure Identity Manager

Configuration items in Identity Manager

Data pools and data sources in Identity Manager

Configure data pools and data sources in Identity Manager

Set up mapping in Identity Manager
Set up printers in Identity Manager
Set up lookup table template in Identity Manager
Set up binary data template in Identity Manager
Set up data pool in Identity Manager
Set up data export to external data source from Identity Manager
Set up scheduled jobs in Identity Manager
Set up search configuration in Identity Manager

Processes and forms in Identity Manager

Cleanup Flowable process history in Identity Manager
Prevent user task to show up in Open tasks in Identity Manager
Set up script template in Identity Manager
Set up timeout duration for processes in Identity Manager

Standard service tasks in Identity Manager

Process - Standard service tasks in Identity Manager
Card Production - Standard service tasks in Identity Manager
Cert QuoVadis PKI - Standard service tasks in Identity Manager
Smart ID Messaging - Standard service tasks in Identity Manager
Certificates - Standard service tasks in Identity Manager
Hybrid Access Gateway - Standard service tasks in Identity Manager
Miscellaneous standard service tasks in Identity Manager
Core Objects - Standard service tasks in Identity Manager
Credentials - Standard service tasks in Identity Manager
Login - Standard service tasks in Identity Manager
PACS - Standard service tasks in Identity Manager

Troubleshooting features for Identity Manager

Project util service tasks in Identity Manager
Error handling service tasks in Identity Manager

Import and edit BPMN processes in Identity Manager

Set up process in Identity Manager

Configure display of buttons in Identity Manager

Set up form in Identity Manager
Configure process start validation

Templates in Identity Manager

Configure templates in Identity Manager

Set up card template in Identity Manager

Set up card layout template in Identity Manager

Edit a Visual id layout in Identity Manager
Set up visual ID layout in Identity Manager

Set up card encoding description template in Identity Manager

Set up elliptic curve cryptography encoding in Identity Manager

Encoding description in Identity Manager

Set up an encoding description file in Identity Manager

APDU script applications for PKI cards in Identity Manager
Block and unblock card in Identity Manager
Card initialization and credentials in Identity Manager
Certificates and keys in Identity Manager
Encoding description templates in Identity Manager
Encoding of SITHS cards with Identity Manager
Encodings using Personal Desktop Client middleware in Identity Manager
Encoding using T-Systems TCOS middleware in Identity Manager
Use Signature slot in Identity Manager
Write data objects to smart cards
Reader/card selection and information in Identity Manager
Encoding using Gemalto/SafeNet/Thales middleware in Identity Manager

Encoding using Idopte middleware in Identity Manager

JCOP 3 MI cards with Idopte middleware
JCOP 3 PGCA cards with Idopte middleware
JCOP 4.5 cards with Idopte middleware

Error handling and extended error mode in Identity Manager

Certificates requested using card production or operation tasks
Structure of an encoding description in Identity Manager

Print only back side of cards in Identity Manager
Set up Nexus GO cards layout template for Identity Manager

Set up identity template in Identity Manager
Set up requests template in Identity Manager
Set up batch order template in Identity Manager
Set up email template in Identity Manager
Set up meetings template in Identity Manager
Set up number ranges in Identity Manager
Set up PACS template

Set up report template in Identity Manager

Use JasperReports in Identity Manager

Set up state graph in Identity Manager
Set up certificate template in Identity Manager

Users and roles in Identity Manager

Configure users and roles in Identity Manager

Set permissions from Identity Manager objects
Set up policy in Identity Manager

Set permissions from Identity Manager users or roles

Limit role to access certain instances of Identity Manager client

Standard roles and bootstrap users in Identity Manager
Set up authentication profile in Identity Manager

GDPR statement for Smart ID Identity Manager

Smart ID clients

Smart ID Desktop App - Windows and macOS

Smart ID Desktop App

Smart ID Desktop App news

Smart ID Desktop App release notes

Release notes Smart ID Desktop App 2.7.1
Release notes Smart ID Desktop App 1.13.x

Earlier release notes - Smart ID Desktop App

Release notes Smart ID Desktop App 2.7.0
Release notes Smart ID Desktop App 2.6.0
Release notes Smart ID Desktop App 2.5.0
Release notes Smart ID Desktop App 2.4.0
Release notes Smart ID Desktop App 2.3.1
Release notes Smart ID Desktop App 2.3.0
Release notes Smart ID Desktop App 2.2.3
Release notes Smart ID Desktop App 2.2.2
Release notes Smart ID Desktop App 2.2.0
Release notes Smart ID Desktop App 2.1.3
Release notes Smart ID Desktop App 2.1.2
Release notes Smart ID Desktop App 2.1.1
Release notes Smart ID Desktop App 2.1

Release notes Smart ID Desktop App 2.0.x

Release notes Smart ID Desktop App 2.0.4
Release notes Smart ID Desktop App 2.0.3
Release notes Smart ID Desktop App 2.0.2
Release notes Smart ID Desktop App 2.0.1
Release notes Smart ID Desktop App 2.0

Release notes Smart ID Desktop App 1.12.x

Release note Smart ID Desktop App 1.12.2
Release note Smart ID Desktop App 1.12.1

Release notes Smart ID Desktop App 1.8.x

Release note Smart ID Desktop App 1.8.12
Release note Smart ID Desktop App 1.8.11
Release note Smart ID Desktop App 1.8.8
Release note Smart ID Desktop App 1.8.7
Release note Smart ID Desktop App 1.8.5
Release note Smart ID Desktop App 1.8.4
Release note Smart ID Desktop App 1.8.3
Release note Smart ID Desktop App 1.8.2
Release note Smart ID Desktop App 1.8.1
Release note Smart ID Desktop App 1.8

Release note Smart ID Desktop App 1.7.5
Release note Smart ID Desktop App 1.6.0

Release notes Smart ID Desktop App 1.5.x

Release note Smart ID Desktop App 1.5.6
Release note Smart ID Desktop App 1.5.1

Release notes Smart ID Desktop App 1.4.x

Release note Smart ID Desktop App 1.4.5
Release note Smart ID Desktop App 1.4.4
Release note Smart ID Desktop App 1.4.3
Release note Smart ID Desktop App 1.4.2
Release note Smart ID Desktop App 1.4.1
Release note Smart ID Desktop App 1.4

Supported versions of Smart ID Desktop App

Smart ID Desktop App overview
Smart ID Desktop App requirements and interoperability

Get started with Smart ID Desktop App

Features of Smart ID Desktop App

Windows use cases with tokens via Smart ID Desktop App

Install and upgrade Smart ID Desktop App

Install and upgrade Smart ID Desktop App (version 2.0)
Install and upgrade Smart ID Desktop App (for versions below 2.0)

General settings in Smart ID Desktop App

Smart ID Desktop App for developers

API parameters specific to Smart ID Desktop App (version 2.0)
API parameters specific to Smart ID Desktop App (for versions below 2.0)
Hybrid Profile in Smart ID Desktop App
Smart ID Desktop App metadata tool

NextVSC add-on

NextVSC news

NextVSC release notes

Release notes NextVSC 1.2.0

Earlier release notes - NextVSC

Release notes NextVSC 1.1.1
Release notes NextVSC 1.1.0
Release notes NextVSC 1.0

NextVSC supported versions

NextVSC overview and features
NextVSC requirements and interoperability
NextVSC installation and uninstallation

Smart ID Desktop App (macOS)

Smart ID Desktop App news (macOS)

Smart ID Desktop App release notes (macOS)

Smart ID Desktop App release notes (macOS) 1.3

Earlier release notes - Smart ID Desktop App (macOS)

Smart ID Desktop App release notes (macOS) 1.2

Supported versions of Smart ID Desktop App (macOS)

Features of Smart ID Desktop App (macOS)

Install and upgrade Smart ID Desktop App (macOS)

Smart ID Desktop App requirements and interoperability (macOS)

Nexus smart card middleware (macOS)

Cryptographic functions (macOS)

PKCS#11 Library (macOS)
CryptoTokenKit (macOS)

Requirements and interoperability (macOS)

Smart ID Mobile App

Smart ID Mobile App news

Android: Release notes Smart ID Mobile App 5.x.x
iOS: Release notes Smart ID Mobile App 6.x.x

Earlier release notes - Smart ID Mobile App

iOS: Release notes Smart ID Mobile App 5.x.x

Smart ID Mobile App overview

Terms and conditions for Smart ID Mobile App

Privacy policy for Smart ID Mobile App

Smart ID Mobile App requirements and interoperability

Get started with Smart ID Mobile App

Smart ID Mobile App OTP authentication

Compare Smart ID Mobile App with other mobile OTP apps
About one-time passwords (OTP)

Features of Smart ID Mobile SDK and Smart ID Mobile App
Security information for Smart ID Mobile App
Smart ID Mobile App videos
Open source components in Smart ID Mobile App
Smart ID Mobile App online authentication

Smart ID Mobile App for end users

Q & A for end users - Smart ID Mobile App
Log in to Microsoft 365 with Smart ID Mobile App online authentication
Log in to Microsoft 365 with Smart ID Mobile App OTP
Secure your Facebook account with Smart ID Mobile App authentication
Secure your Gmail account with Smart ID Mobile App authentication
Secure your Microsoft account with Smart ID Mobile App authentication

Install digital certificates using Smart ID Mobile App

Install digital certificates on Android
Install digital certificates on iOS

Smart ID Mobile App for developers

Provision mobile virtual smart card with visual ID

Requirements on content provider API

Use authentication images from a content provider service
Set up Smart ID Mobile App to start on same device

Nexus Personal Desktop Client

Personal Desktop Client news

Release notes for Personal Desktop Client

Release notes Personal Desktop Client 5.18.3

Earlier release notes - Personal Desktop Client

Release notes Personal Desktop Client 5.18.2
Release notes Personal Desktop Client 5.18.1
Release notes Personal Desktop Client 5.18.0
Release notes Personal Desktop Client 5.17.2
Release notes Personal Desktop Client 5.17.1
Release notes Personal Desktop Client 5.17.0
Release notes Personal Desktop Client 5.16.0
Release notes Personal Desktop Client 5.15.0
Release notes Personal Desktop Client 5.14.1
Release notes Personal Desktop Client 5.14
Release notes Personal Desktop Client 5.13
Release notes Personal Desktop Client 5.12
Release notes Personal Desktop Client 5.11
Release note Personal Desktop Client 5.10
Release note Personal Desktop Client 5.9

Release notes Personal Desktop Client 5.8.x

Release note Personal Desktop Client 5.8.12
Release note Personal Desktop Client 5.8.7
Release note Personal Desktop Client 5.8.6
Release note Personal Desktop Client 5.8.5
Release note Personal Desktop Client 5.8.4
Release note Personal Desktop Client 5.8.3
Release note Personal Desktop Client 5.8.2
Release note Personal Desktop Client 5.8.1
Release note Personal Desktop Client 5.8

Release notes Personal Desktop Client 5.7.x

Release note Personal Desktop Client 5.7.2
Release note Personal Desktop Client 5.7.1
Release note Personal Desktop Client 5.7

Release notes Personal Desktop Client 5.6.x

Release note Personal Desktop Client 5.6.1
Release note Personal Desktop Client 5.6

Release notes Personal Desktop Client 5.5.x

Release note Personal Desktop Client 5.5.1
Release note Personal Desktop Client 5.5

Release notes Personal Desktop Client 5.4.x

Release note Personal Desktop Client 5.4.3
Release note Personal Desktop Client 5.4.2
Release note Personal Desktop Client 5.4.1
Release note Personal Desktop Client 5.4

Release notes Personal Desktop Client 5.3.x

Release note Personal Desktop Client 5.3.1
Release note Personal Desktop Client 5.3

Release notes Personal Desktop Client 5.2.x

Release note Personal Desktop Client 5.2.3
Release note Personal Desktop Client 5.2.2
Release note Personal Desktop Client 5.2.1
Release note Personal Desktop Client 5.2

Release notes Personal Desktop Client 5.1.x

Release note Personal Desktop Client 5.1.2
Release note Personal Desktop Client 5.1.1
Release note Personal Desktop Client 5.1

Supported versions of Nexus Personal Desktop Client
Firefox interoperability for Personal Desktop Client

Personal Desktop Client overview

Cryptographic functions in Personal Desktop Client

Personal Desktop PKCS#11
Personal CSP

Minidriver component

Personal Desktop Client requirements and interoperability

Install Personal Desktop Client

Sample configuration file for Personal Desktop Client
Install Personal Desktop Client on Linux
Install Personal Desktop Client on Windows
Install Personal Desktop Client on macOS

Personal Desktop Client user's guide

Configure Personal Desktop Client

Run Personal Desktop Client in Portable mode
Configure CSP and PKCS#11 in Personal Desktop Client
Configure minidriver
PIN caching in Personal Desktop Client

Plugout web browser integration

Smart ID Messaging

Smart ID Messaging news

Hermod release notes

Release note Hermod 4.4.0
Release note Hermod 3.8.3

Earlier release notes - Hermod

Release note Hermod 4.3.1
Release note Hermod 4.3
Release note Hermod 4.2.7
Release note Hermod 4.2.5
Release note Hermod 4.2.4
Release note Hermod 4.2.3
Release note Hermod 4.2.2
Release note Hermod 4.2.0
Release note Hermod 4.1.4
Release note Hermod 4.1.3
Release note Hermod 4.1.2
Release note Hermod 4.1.1
Release note Hermod 4.0.7
Release note Hermod 4.0.6
Release note Hermod 4.0.4
Release note Hermod 3.8.1
Release note Hermod 3.8.0
Release note Hermod 3.7.0

Release notes Hermod 3.6.x

Release note Hermod 3.6.2
Release note Hermod 3.6.1
Release note Hermod 3.6.0

Release note Hermod 3.5.0
Release note Hermod 3.4.1

Release notes Hermod 3.3.x

Release note Hermod 3.3.3
Release note Hermod 3.3.2
Release note Hermod 3.3.1

Release notes Hermod 3.2.x

Release note Hermod 3.2.3
Release note Hermod 3.2.1
Release note Hermod 3.2.0

Release notes Hermod 3.1.x

Release note Hermod 3.1.5
Release note Hermod 3.1.4
Release note Hermod 3.1.3
Release note Hermod 3.1.2
Release note Hermod 3.1.1

Release note Hermod 3.0.0

Release notes Hermod 2.5.x

Release note Hermod 2.5.3
Release note Hermod 2.5.2
Release note Hermod 2.5.1
Release note Hermod 2.5.0

Release notes Hermod 2.4.x

Release note Hermod 2.4.3
Release note Hermod 2.4.2
Release note Hermod 2.4.1
Release note Hermod 2.4.0

Supported versions of Smart ID Messaging (Hermod)

Smart ID Messaging overview

Hermod

Hermod architecture

Nexus Push Service
High availability architecture for Smart ID Messaging

Install Hermod

Install Hermod 4.x (docker)
Install Hermod 4.x (WAR file)
Deploy Hermod 4.x on Kubernetes

Install and deploy Hermod 3.x

Install Hermod 3.x (docker)
Install Hermod 3.x (WAR file)
Deploy Hermod 3.x on Kubernetes

Install the Hermod test app
Add API user and callback URL in Hermod

Upgrade Hermod

Upgrade Hermod from 4.x to 4.0.7
Upgrade Hermod from 3.x to 4.x
Upgrade Hermod from 2.x to 3.x

Smart ID Messaging API overview

Hermod API

Check system status for Smart ID Messaging
Smart ID Messaging integrations

Smart ID Mobile SDK

Smart ID Mobile SDK news

Android: Release notes Smart ID Mobile SDK 3.x.x
iOS: Release notes Smart ID Mobile SDK 3.x

Smart ID Mobile SDK overview
Smart ID Mobile SDK requirements
Open source components for Smart ID Mobile SDK

Smart ID Mobile SDK for developers

Implement push notifications in a mobile app based on Smart ID Mobile SDK

Smart ID Digital Access component

Digital Access component news

Digital Access release notes

Release notes Digital Access component 6.11.1
Release notes Digital Access component 6.11

Earlier release notes - Digital Access component

Release notes Digital Access component 6.10.x

Release notes Digital Access component 6.10.3
Release notes Digital Access component 6.10.2
Release notes Digital Access component 6.10.1
Release notes Digital Access component 6.10.0

Release notes Digital Access component 6.9.x

Release notes Digital Access component 6.9.3
Release notes Digital Access component 6.9.2
Release notes Digital Access component 6.9.1
Release notes Digital Access component 6.9.0

Release notes Digital Access component 6.8.x

Release notes Digital Access component 6.8.5
Release notes Digital Access component 6.8.4
Release notes Digital Access component 6.8.3
Release notes Digital Access component 6.8.2
Release notes Digital Access component 6.8.1
Release notes Digital Access component 6.8.0

Release notes Digital Access component 6.7.x

Release notes Digital Access component 6.7.7
Release notes Digital Access component 6.7.6
Release notes Digital Access component 6.7.5
Release notes Digital Access component 6.7.4
Release notes Digital Access component 6.7.2
Release notes Digital Access component 6.7.1
Release notes Digital Access component 6.7.0

Release notes Digital Access components 6.6.x

Release notes Digital Access component 6.6.6
Release notes Digital Access component 6.6.5
Release notes Digital Access component 6.6.4
Release notes Digital Access component 6.6.2
Release notes Digital Access component 6.6.0

Release notes Digital Access component 6.5.x

Release notes Digital Access component 6.5.3
Release notes Digital Access component 6.5.2
Release notes Digital Access component 6.5.1
Release note Digital Access component 6.5.0

Release note Digital Access component 6.4.0

Release notes Digital Access component 6.3.x

Release note Digital Access component 6.3.4
Release note Digital Access component 6.3.3
Release note Digital Access component 6.3.2
Release note Digital Access component 6.3.1
Release note Digital Access component 6.3.0

Release notes Digital Access component 6.2.x

Release note Digital Access component 6.2.4
Release note Digital Access component 6.2.3
Release note Digital Access component 6.2.2
Release note Digital Access component 6.2.1
Release note Digital Access component 6.2.0

Release notes Digital Access component 6.1.x

Release note Digital Access component 6.1.4
Release note Digital Access component 6.1.3
Release note Digital Access component 6.1.2
Release note Digital Access component 6.1.1
Release note Digital Access component 6.1.0

Release notes Digital Access component 6.0.x

Release note Digital Access component 6.0.7
Release note Digital Access component 6.0.6
Release note Digital Access component 6.0.5
Release note Digital Access component 6.0.4
Release note Digital Access component 6.0.3
Release note Digital Access component 6.0.2
Release note Digital Access component 6.0.1
Release note Digital Access component 6.0

Supported versions of Digital Access component
Important note on Digital Access component and the SameSite cookie directive change

Vulnerability/patch-related information

Log 4J vulnerability information for Digital Access
Handle the CVE-2021-3449 Vulnerability
Handle the CVE-2021-3156 Vulnerability
Resolve a vulnerability in Digital Access that can result in a Denial of service
Resolve a phishing vulnerability in Hybrid Access Gateway and Digital Access

Replacing Freja JWS validation certificate

Digital Access component overview

Digital Access component architecture overview

High availability architecture for Digital Access component

Digital Access interfaces

Digital Access application portal
Digital Access Admin

Digital Access component requirements and interoperability

Deploy Digital Access component

Security standards and NIST compliance in Digital Access component
Open source components in Digital Access component
Set up high availability for Digital Access component
Adapt Digital Access component for large deployment
Do initial setup of Digital Access component
Deploy Digital Access using Podman
Deploy Digital Access component 6.9.x on Docker
Deploy Digital Access component 6.10.0 on Docker
Deploy Digital Access on RHEL 8 using Ansible and Podman
Run Digital Access component in distributed mode
Set up high availability for Digital Access deployment (bridge network)

Upgrade Digital Access component

Upgrade Digital Access component from 6.0.0 and above to 6.0.5 and above
Digital Access docker image tags
Upgrade Digital Access component from 6.0.5 or above

Docker swarm commands

Configure Digital Access

Managing logs in Digital Access

Status and reports in Digital Access

Generate reports in Digital Access

Configure Digital Access with Utimaco HSM

Authentication methods in Digital Access

Enable secure authentication for working from home
Set up authentication method in Digital Access
Set up SAML authentication context in Digital Access
Use authentication methods in Digital Access for signing over SAML

Examples - Set up Nexus OTP and Nexus Mobile Text as 2FA

Set up Nexus OTP as 2FA for Check Point administration
Set up Nexus OTP as 2FA for Cisco ASA
Set up Nexus OTP as 2FA for Citrix NetScaler
Set up Nexus OTP as 2FA for Cyberoam
Set up Nexus OTP as 2FA for Fortinet Firewall
Set up Nexus OTP as 2FA for Juniper Junos Pulse
Set up Nexus OTP as 2FA for Outlook Web Access
Set up Nexus OTP as 2FA for Palo Alto
Set up Nexus OTP as 2FA for SafeInspect
Set up Nexus OTP as 2FA for SSH login on Linux
Set up Nexus OTP as 2FA for VMware Horizon View

Smart ID Mobile App authentication

Set up Smart ID authentication
Set up NFC card authentication

Personal Desktop Client authentication

OpenID Connect federation in Digital Access component

Set up Digital Access component as OpenID provider
Set up Digital Access component as OpenID Connect relying party

Set up External Authentication Method (Digital Access part)

Nexus TruID

Brand TruID client

Nexus Mobile Text

Nexus Invisible Token

Set up Invisible token

Nexus OATH

Set up OATH tokens in Digital Access
Set up an OATH-compliant mobile/desktop app as authentication method
Use Nexus OTP display cards in Digital Access
Set up Secure activation for OATH

Nexus Password

Swedish national eID - BankID and Mobile BankID

Authenticate with Swedish BankID using the Nexus XPI Web Service (SOAP) API

Freja eID in Digital Access

Set up Freja eID authentication in Digital Access

FIDO2 authentication

Set up FIDO2 authentication

Certificate filtering for Smart ID authentication
Customize and brand Digital Access
Known limitations in Digital Access

Resources in Digital Access

Access Client in Digital Access

Install Access Client

Access rules in Digital Access

Add access rule in Digital Access

Customized resources in Digital Access
Global resource settings in Digital Access

SAML 2.0 federation in Digital Access

SAML Single Logout in Digital Access
Add a SAML 2.0 federation in Digital Access

Single sign-on in Digital Access

Single sign-on script in Digital Access
Add single sign-on domain in Digital Access

Standard resources in Digital Access

Tunnel resources in Digital Access

Tunnel sets in Digital Access

Client firewalls in Digital Access

Web resources in Digital Access component

Set up access to Apache Guacamole in Digital Access component

Set up access to Confluence with Digital Access as identity provider
Set up access to G-suite applications with Digital Access as identity provider
Set up access to Digital Access Admin

System settings in Digital Access

Access point in Digital Access, add, set up and configure
Administration service in Digital Access, set up internal and external communication
Assessment in Digital Access
Authentication service in Digital Access, add, set up, and configure

Certificates in Digital Access

Add certificates in Digital Access

Configure OAuth 2.0 in Digital Access

Enable OAuth 2.0 authorization for Digital Access administration web service

Database service in Digital Access

Configure all databases in Digital Access

Device definitions in Digital Access

Add device definition for client firewall in Digital Access

Distribution service in Digital Access, add, set up and configure

Notification settings in Digital Access

Change provisioning messages in Digital Access
Send out provisioning links from Digital Access using a bounce page
Configure TLS-enabled notification server in Digital Access
Set up email or sms notification channel in Digital Access

OATH configuration in Digital Access
Policy service in Digital Access, add, set up, and configure

Set up Smart ID Messaging in Digital Access

Architecture overview - Smart ID Messaging and Digital Access

Set up push notifications in Digital Access
Create administrative roles in Digital Access
Set up RADIUS client in Digital Access

Users in Digital Access

Set up password policy
Add alerts in Digital Access
Enable self-service password handling in Digital Access

User accounts in Digital Access

Global user account settings in Digital Access
Enable Smart ID Mobile App self-service in Digital Access

Identity orchestration in Digital Access

Add identity orchestration channel and plugin in Digital Access

Add user account in Digital Access

User groups in Digital Access

Add user group in Digital Access

User import in Digital Access

User linking in Digital Access

Link Digital Access users to a directory service like Active Directory
Repair user link in Digital Access

User storage in Digital Access

Add user storage in Digital Access

Digital Access component integrations

Digital Access Extension Programming Interfaces (XPI)

Digital Access XPI REST API

Troubleshooting Digital Access

Login issues
SSL issues
Add web resource with SNI in Digital Access
Slow login for end users in Digital Access
Troubleshooting after upgrade Digital Access to 6.0.5 and above
Extract certificate and private key from a pkcs12 container in Digital Access
SAML authentication failures

GDPR statement for Smart ID Digital Access

Smart ID Physical Access component

Smart ID Physical Access news

Physical Access installation and upgrade

Open source components in Physical Access
Define connection string to configure messaging queue in Physical Access

Configure PACS connectors in Physical Access component

Physical Access database - common parameters
Connect to a PACS system in PACS admin panel
About import and export to Physical Access

Integrate physical access control system (PACS) with Identity Manager

Set up integration with Bewator Omnis
Set up integration with UniLock
Set up integration with Interflex IF-6040
Set up PACS demo service
Set up integration with RCO R-CARD M5
Set up integration with Dorma Kaba Exos
Set up integration with Security Shells iSecure for connection with HID controllers
Set up integration with Unison Pacom
Set up integration with ASSA ARX
Set up integration with Bravida Integra
Set up integration with SiPort
Set up integration with RCO R-CARD M5 Admin API

Set up integration with Salto

Mount Salto CIFS between Linux and Windows

Set up integration with SiPass Integrated

Smart ID Certificate Manager
Nexus OCSP Responder
Nexus Timestamp Server

Nexus Card SDK

Card SDK news

Card SDK release notes

Release notes Nexus Card SDK 6.6

Earlier release notes - Card SDK

Release notes Nexus Card SDK 6.5
Release notes Nexus Card SDK 6.4
Release notes Nexus Card SDK 6.3
Release notes Nexus Card SDK 6.2
Release notes Nexus Card SDK 6.1
Release notes Nexus Card SDK 6.0

Release notes Nexus Card SDK 5.10.x

Release notes Nexus Card SDK 5.10.0.22
Release notes Nexus Card SDK 5.10

Release notes Nexus Card SDK 5.9.x

Release notes Nexus Card SDK 5.9.0.23
Release notes Nexus Card SDK 5.9

Release notes Nexus Card SDK 5.8

Release notes Nexus Card SDK 5.7.x

Release notes Nexus Card SDK 5.7.0.27
Release notes Nexus Card SDK 5.7

Release notes Nexus Card SDK 5.6.x

Release notes Nexus Card SDK 5.6.0.14
Release notes Nexus Card SDK 5.6

Supported versions of Nexus Card SDK

Card SDK overview

Install Card SDK

Licensing for Nexus Card SDK
Card SDK third party libraries

Configure Card SDK

Initial setup of Configuration Manager

Set up SSL connection to Card SDK by uploading PKCS#12 file
Encrypted web service requests

Set up card printers

Set up readers and encoders

Set up contact chip encoding device

Set up capturing
Set up logging in Nexus Card SDK

Capture images

Capture using live image camera
Capture using web camera
Capture using scanner
Read image from digital camera
Read image from file
Paste image from clipboard

Capture signatures

Design cards

Define card type

Card Table view - About and settings

Design card layout

Layout objects and their properties
Work with layout objects
Layout settings
Test card layout

Produce card

Produce card with data source
Produce card without data source

Automatically distribute Card SDK configuration
Issues accessing emulated Mifare Classic chip

Integrate Card SDK in your own application

Ways to integrate Card SDK

Integrate in Windows application

Software in client-server architecture with one fat-client

Integrate with client-server architecture
Encoding descriptions

Capture image

ImagePreview request
ImageCapture request

Produce cards
Administration
Description of file format
Trace HTTP traffic
Introduction to API
Use Nexus Card SDK with different programming languages
Define cards

Card SDK requirements and interoperability
GDPR statement for Nexus Card SDK

Third party products

Joint solutions with Nexus partners

Highly trusted PKI-based identities secured by HSM
Smooth management of certificates from trusted root

Card printers

Magicard Prima 4 and Prima 8 troubleshooting

Matica card printers

Matica XID8100
Matica XID8600
Matica XID8300

Upgrade Magicard Prima 4 to Prima 8

Nexus GO services

Nexus GO

Privacy policy for Nexus GO
Service level agreement Nexus GO
Nexus GO Terms of Use

Nexus GO Workforce

GO Workforce software installation guide
GO Workforce credentials
GO Workforce service options
GO Workforce service plans
GO Workforce service settings

Nexus GO Messaging

Nexus GO Cards

Nexus GO Cards management portal

Order cards
Anonymization in Nexus GO Cards Management portal
Data collection workflows

Nexus GO Cards visual security features
Nexus GO Cards inhouse design center
Roles in Nexus GO Cards management portal
Nexus GO Cards onboarding process

Nexus GO Cards encoding methods and card printers

Nexus Global Key Format (GKF)

Card ordering API

Nexus GO Cards reporting
Nexus GO Cards authentication
Nexus GO Cards ordering

Photo guidelines for ID cards
GDPR statement for Nexus GO Cards

Policies and terms for Nexus GO Cards

Terms and conditions for Nexus GO Cards

Data processing agreement for Nexus GO Cards
Reclaim of card in Nexus GO Cards

Privacy policy for Nexus GO Cards

Villkor för Nexus GO Cards

Personuppgiftsbiträdesavtal för Nexus GO Cards
Reklamation av kort i Nexus GO Cards

Nexus GO Cards 1.0

Mobile visual ID as complement to access card

Q & A - Mobile visual ID with Smart ID Mobile App
Frågor och svar - Mobilt visuellt ID med Smart ID Mobile App

Card ordering API 1.0

Card ordering API - examples

Features of Nexus GO Cards 1.0

Manage PINs efficiently with Nexus GO Cards 1.0
Customized reports in Nexus GO Cards 1.0
Automatic processing of serial numbers 1.0

Nexus GO Cards order portal 1.0

Roles in Nexus GO Cards
Log in to Nexus GO Cards order portal
Order cards or key fobs in Nexus GO Cards order portal
Approve order in Nexus GO Cards
View order history in Nexus GO Cards
Add or edit user in Nexus GO Cards
Add or edit delivery addresses in Nexus GO Cards
Use master accounts in Nexus GO Cards

Video tutorials for Nexus GO Cards 1.0

Nexus GO Cards 1.0 - Terms and conditions

User terms for administrator for Nexus GO Cards
User terms for a user of Nexus GO Cards
Användarvillkor för administratörer i Nexus GO Cards
Användarvillkor för användare av Nexus GO Cards

Nexus GO Cards for partners

Production Partner

Nexus GO IoT

Nexus GO Signing

Nexus GO Signing workflow
Get started with Nexus GO Signing

Nexus GO Signing portal

All tasks in Nexus GO Signing portal

Log in to Nexus GO Signing portal
Invite administrator to Nexus GO Signing portal
Sign document in the Nexus GO Signing portal
View signing requests in Nexus GO Signing portal
Download signed document from the Nexus GO Signing portal
Add email logo in Nexus GO Signing portal
Upload document to Nexus GO Signing portal

Nexus GO Signing user guide for signers
Nexus GO Signing user guide for administrators

PDF Signing API

Authenticate to the PDF Signing API
Create signing request in PDF Signing API
Sign document with PDF Signing API
Get request status or signed document
Set up PDF Signing API in Nexus GO

Sign document via Word add-in
Validate signed documents from Nexus GO Signing
Nexus GO Signing eIDAS compliancy

Terms: Nexus GO Signing

Terms and Conditions for Nexus GO Signing
Administrator Terms for Nexus GO Signing
Signatory Terms for Nexus GO Signing
Data processing agreement for Nexus GO Signing
Document management in Nexus GO Signing

GDPR statement for Nexus GO Signing

Connect identity provider to Nexus GO Signing

Set up Digital Access as identity provider to Nexus GO Signing
Set up Azure Active Directory as identity provider to Nexus GO PDF Signing
Set up Forgerock as identity provider to Nexus GO PDF Signing
Set up Microsoft AD FS as identity provider to Nexus GO Signing
Set up PhenixID Authentication Services as identity provider to Nexus GO Signing

Smart ID IoT

Telecom network PKI

Connected vehicles PKI

Identities for vehicle-to-everything - V2X PKI
Identities for Plug and Charge/vehicle-to-grid - V2G PKI
PKI for vehicle ID

Workplace PKI
Manufacturing PKI
Energy systems PKI
Research projects for IoT PKI

Use cases and modules

Smart ID Workforce use cases

Release note Smart ID Workforce use cases

Users

Users - Add-ons

Users add-on CSV

Users add-on CSV - Options

Users add-on CSV - Manage option to set the user's end state
Users add-on CSV- Manage option to add a uniqueness check
Users add-on CSV - script for managing options in Smart ID Identity Manager

Create user add-on CSV
Synchronize users from CSV file to Identity Manager
Users CSV - Start-up guide

Users add-on LDAP

Users LDAP - Start-up guide
Create user add-on LDAP
Synchronize active LDAP users to Identity Manager
Synchronize inactive LDAP users to Identity Manager

Users - Use cases for the operator

Create user
Deactivate user
Reactivate user
Lock user
Edit user
Delete user
Change password
Reset password
Edit roles
Upload default roles
Delete default roles
Create default role manually
Abort request
Create reason
Edit reason
Delete reason
Create identifier
Edit identifier
Delete identifier

Users - Use cases for the self-service user

Edit photo (self-service user)
Reset a forgotten password (self-service user)
Change password (self-service user)
Abort request (self-service user)

Users - Batch order use cases

Delete multiple users (batch order)
Reset password for multiple users (batch order)
Edit roles for multiple users (batch order)

Users - Options

Users - Manage option to have an approval step
Users - Manage option to add a uniqueness check
Users - Manage option to send a user password
Users - Manage option to set end state of the created user
Users - Manage option to set photo size
Users - script for managing options in Smart ID Identity Manager

Users - Approval handling
Users - States
Users - Start-up guide

Shared credentials

Shared credentials - Start-up guide

Cards

Cards - Start-up guide

Cards - Add-ons

Cards add-on External production

Cards add-on External production - Start-up guide

Cards add-on External production - use cases for the operator

Order card (external production)
Abort card order (external production)
Update card order (external production)

Cards add-on External production - Batch order use cases

Order multiple cards in a batch order (external production)

Cards add-on External production - Options

Cards (external production) - Manage option to add an approval step
Cards (external production) - Manage option to select production type
Cards (external production) - Manage option to queue card orders
Cards (external production) - Manage option to allow multiple card orders
Cards (external production) - Manage option to notify the user about an ordered card
Cards (external production) - Manage option to set PIN by user
Cards (external production) - Manage option to set PIN length
Cards (external production) - Manage option to set PUK length
Cards (external production) - Manage option to select what certificates to issue
Cards (external production) - script for managing options in Smart ID Identity Manager

Cards add-on External production - States

Cards - Use cases for the operator

Request card
Issue card
Activate card
Edit card
Deactivate card
Reactivate card
Lock card
Unblock card remote
Abort card request

Cards - Use cases for the self-service user

Unblock/change PIN for a card (self-service user)
Unblock PIN offline (self-service user)

Cards - Batch order use cases

Request multiple cards (batch order)
Issue multiple cards (batch order)

Cards - Options

Cards - Manage option to add an approval step
Cards - Manage option to allow multiple active cards
Cards - Manage option to send PIN information
Cards - Manage option to set PIN length
Cards - Manage option to send PUK information
Cards - Manage option to set PUK length
Cards - Manage option to select what certificates to issue
Cards - Manage option to decide how to recover encryption certificates
Cards - Manage option to set the card end state
Cards - Manage option to set the certificate end state
Cards - script for managing options in Smart ID Identity Manager

Cards - Options for expiring cards

Cards - script for managing options for expiring cards

Cards - States
Certificates - States
Cards - Approval handling

Temporary cards

Temporary cards - Start-up guide

Temporary cards - Add-ons

Temporary cards add-on External production

Temporary cards add-on External production - Start-up guide

Temporary cards add-on External production - use cases for the operator

Order temporary cards (external production)
Initialize temporary card (external production)
Abort temporary card order (external production)

Temporary cards add-on External production - Options

Temporary cards (external production) - Manage option to select production type
Temporary cards (external production) - Manage option to queue temporary card
Temporary cards (external production) - Manage option to set PIN length
Temporary cards (external production) - Manage option to set PUK length
Temporary cards (external production) - script for managing options in Smart ID Identity Manager

Temporary cards add-on External production - States

Temporary cards - Use cases for the operator

Withdraw temporary card
Request temporary cards
Issue multiple temporary cards (batch order)
Abort temporary card
Extend temporary card
Lock temporary card
Assign temporary card

Temporary cards - Options

Temporary cards - Manage option to send PIN information
Temporary cards - Manage option to allow multiple active temporary cards
Temporary cards - script for managing options in Smart ID Identity Manager
Temporary cards - Manage option to select what certificates to issue
Temporary cards - Manage option to set PIN length
Temporary cards - Manage option to decide how long the temporary card shall be valid
Temporary cards - Manage option to set PUK length
Temporary cards - Manage option to encode a temporary card

Temporary cards - Options for expiring temporary cards

Temporary cards - script for managing options for expiring temporary cards

Temporary cards - States

Mobile ID

Mobile ID - Start-up guide

Mobile ID - Use cases for the operator

Supply mobile ID for a user
Lock mobile ID for a user
Delete mobile ID
Deactivate Mobile ID
Reactivate Mobile ID

Mobile ID - Use cases for the self-service user

Lock mobile ID (self-service user)
Get mobile ID (self-service user)

Mobile ID - Options

Mobile ID - Manage option to decide how to recover encryption certificates
Mobile ID - script for managing options in Smart ID Identity Manager
Mobile ID - Manage option to notify the user about a creation of a mobile ID
Mobile ID - Manage option to decide how long the Mobile ID shall be valid
Mobile ID - Manage option to set properties related to the user
Mobile ID - Manage option to select what certificates to issue
Mobile ID - Manage option where to show the QR code

Mobile ID - States

Mobile ID - Options for expiring mobile IDs

Mobile ID - script for managing options for expiring mobile IDs

Virtual smart card

Virtual smart card - Start-up guide

Virtual smart card - Use cases for the operator

Lock virtual smart card
Deactivate virtual smart card
Reactivate virtual smart card
Delete virtual smart card

Virtual smart card - Use cases for the self-service user

Get virtual smart card (self-service user)
Change PIN for a virtual smart card (self-service user)
Lock virtual smart card (self-service user)

Virtual smart card - Options

Virtual smart card - Manage option to control the PIN complexity
Virtual smart card - Manage option to select what certificates to issue
Virtual smart card - script for managing options in Smart ID Identity Manager
Virtual smart card - Manage option to set properties related to the user
Virtual smart card - Manage option to decide how long the virtual smart card shall be valid

Virtual smart card - States

Virtual smart card - Options for expiring virtual smart cards

Virtual smart card - script for managing options for expiring virtual smart cards

Roles in Smart ID use cases
Roles vs use cases in Smart ID

Smart ID Workplace use cases

Release note Smart ID Workplace use cases
Workplace - Start-up guide

Workplace - Use cases

Assets use cases

Create asset category
Edit asset category
Delete asset category
Create asset
Create reason - deactivate asset
Deactivate asset
Delete reason - deactivate asset
Edit asset
Import assets
Manage asset
Reactivate asset

Certificate profile use cases

Lock certificate
Retrieve certificate
Assign certificate profile
Deactivate certificate profile
Edit certificate profile
Reregister SCEP
Enroll profile
Import certificate using REST API
Delete certificate profile
Reactivate certificate profile
Create certificate profile
Deregister SCEP
Renew P12 certificate

Domain policy use cases

Reactivate domain policy
Deactivate domain policy
Create domain policy
Edit domain policy

Other use cases

Fetch certificates via REST API
Assign system administrator role
Batch order - Lock certificates
Batch sync expired certificates

Workplace - Approval handling

Workplace - States
Workplace - Roles
Workplace - Roles and use cases

Smart ID Workforce modules

Product sheet for Smart ID Workforce

Smart ID Workforce modules overview

Physical ID

Identity management - Physical ID

Automatically import identity data - Physical ID
Automatically deactivate card - Physical ID
Person uploads photo - Physical ID
Enter person data manually - Physical ID
Edit roles for person - Physical ID
Set password for person - Physical ID
Reset forgotten password - Physical ID
Person is on temporary leave - Physical ID
Person returns from temporary leave - Physical ID
Enable person for Digital Access - Physical ID

Card management - Physical ID

Request or issue card - Physical ID
Mass-produce cards - Physical ID
Person returns temporary card - Physical ID
Issue temporary card - Physical ID
Replace card - Physical ID
Activate card - Physical ID
Lock card - Physical ID
Deactivate card - Physical ID
Reactivate card - Physical ID

Physical ID specification

Roles in Physical ID
Physical ID Card layouts and technology
Physical ID - Self-Service

Digital ID

Identity management - Digital ID

Automatically import identity data - Digital ID
Automatically deactivate card - Digital ID
Person uploads photo - Digital ID
Enter person data manually - Digital ID
Edit roles for person - Digital ID
Set password for person - Digital ID
Reset forgotten password - Digital ID
Person is on temporary leave - Digital ID
Person returns from temporary leave - Digital ID
Enable person for Digital Access - Digital ID

Compare 2FA methods

Smart card management

Mass-produce smart cards - Digital ID
About smart cards
Renew smart card - Digital ID
Unblock PKI PIN for smart card - online - Digital ID
Replace smart card - Digital ID
Deactivate smart card - Digital ID
Issue temporary smart card - Digital ID
Activate smart card - Digital ID
Mass-produce employee temporary smart cards - Digital ID
Request or issue smart card - Digital ID
Reactivate smart card - Digital ID
Unblock PKI PIN for smart card - offline - Digital ID
Renew smart card - Self-Service - Digital ID
Change PKI PIN for smart card - Digital ID
Create temporary smart card - Digital ID
Lock smart card - Digital ID
Person returns temporary smart card - Digital ID

Mobile virtual smart card management

About mobile virtual smart cards
Enable person to use mobile ID
Issue mobile ID to person
Lock mobile ID
Renew mobile ID
Person forgot the mobile ID PIN
Person has changed phone

Software token management

About software tokens
Person forgot software token password
Recover software tokens
Renew software token
Renew software token - self-service
Replace all software tokens
Request or issue software token
Revoke all software tokens
Send encryption software tokens to stand-in

Server certificate management

Expiry check server and certificates
Issue server certificate in PKCS#10 format
Issue server certificate in PKCS#12 format
Lock server
Lock single server certificate
Modify server information
Register server
Renew server certificate via PKCS#10 request
Renew server certificate via PKCS#12 request

Virtual smart card management

About virtual smart cards
Change virtual smart card PIN
Delete virtual smart cards
Enable or disable person to manage virtual smart card
Issue certificates to virtual smart card
Lock virtual smart cards
Renew virtual smart card
Replace virtual smart card
Reset virtual smart card PIN

Secure email communication using S/MIME in Smart ID

Digital ID specification

Roles in Digital ID
Digital ID Card layouts and technology
Digital ID - Self-Service

Physical access

Identity management - Physical access

Enter person data manually - Physical access
Person returns from temporary leave - Physical access
Person is on temporary leave - Physical access

Card management - Physical access

Deactivate smart card - Physical access
Replace smart card - Physical access
Lock smart card - Physical access
Issue temporary smart card - Physical access
Mass-produce employee temporary smart cards - Physical access
Person returns temporary smart card - Physical access
Create temporary smart card - Physical access
Activate smart card - Physical access

Physical access entitlement

Request entitlement for employee
Withdraw entitlement from employee
Change entitlement approver for employee
Disable entitlement requests for employee
Activate entitlement
Deactivate entitlement
Edit entitlement
Lock entitlement
Create entitlement approver or responsible
Activate entitlement approver or responsible
Deactivate entitlement approver or responsible

Access group management - Physical access

Create access group
Update access group
Delete access group
Assign persons to access group
Withdraw group membership

Access rule management - Physical access

Create access rule
Assign entitlements to access rule
Assign access groups to access rule
Delete access rule
Withdraw entitlements from access rule

Physical access specification

Roles in Physical access

Digital access

Strong authentication with Smart ID Digital access

Available 2FA methods with Digital access

Mobile one-time passwords (OTP)
Hardware one-time password (OTP) tokens
One-time passwords (OTP) in Nexus' Digital access platform

Protect digital resources with multifactor authentication
Risk-appropriate authentication with Digital access
Simple management of users and passwords in Digital access
What is multifactor authentication?

Corporate PKI
ACME support in Nexus Smart ID
Smart ID Cards and credentials

General information

For partners

Terms and GDPR Statements

GDPR for Nexus GO services - FAQ
GDPR för Nexus GO webbtjänster - vanliga frågor
Terms: Nexus GO Authentication with Swedish BankID (in Swedish)

About Nexus Support

Nexus Support Portal

Video instructions for the support portal
Written instructions for the support portal
Questions and answers about Nexus Support

About Nexus Group
Java support

End of Sale and End of Life statements

End of Life for PRIME 3.12
End of Life for Nexus CardDesk versions R1 and R2
End of Life for Nexus IDCARD
End of Life for Nexus ProACT
End of Life for Nexus SE46
End of Life for Nexus SmartACT
End of Life for Nexus TruID
End of Life for PortWise AMAS
End of Sale for card readers
End of Sale for Cotag
End of Sale for Nexus CardDesk versions R1 and R2
End of Sale for Nexus Cidron
End of Sale for Nexus IDC 2.x
End of Sale for Nexus IDCARD
End of Sale for Nexus SE46
End of Sale for Nexus Service Station
End of Sale for Nexus SmartACT
End of Sale for Nexus TruID
End of Sale for Quick-Rot
End of support for Ubuntu 16.04 LTS for coming release of Personal Desktop Client
Nexus policy and lifecycle definitions

General instructions

Harden Tomcat
Modify product configurations to avoid Tomcat vulnerability Ghostcat

Set up smart card logon in Active Directory

Manually integrate third party CA in Active Directory
Publish CA certificates to clients
Issue domain controller certificates

Troubleshoot smart card logon to Windows

Supportticket für CardDesk erstellen
About Nexus Documentation

Breadcrumbs

Nexus Documentation
Smart ID

On this Page

General vulnerability information

XSS vulnerability in Digital Access
Critical Tomcat vulnerability (CVE-2024-56337, CVE-2024-50379)
Critical vulnerability in Traefik
Critical issue: User Certificate authentication method in Digital Access
CURL vulnerability information (CVE-2023-38545)
Nexus information on: Azure Key Leakage - Storm-0558
Apache Commons Text Vulnerability
GNU Libtasn1 vulnerability
Log4J / Log4Shell Vulnerability information
OpenSSL advisory vulnerability
Spring4Shell Vulnerability

Nexus Group
Contact Nexus
Disclaimer
Terms and conditions

Copyright Technology Nexus Secured Business Solutions AB. All rights reserved.
Powered by Scroll Sites & Atlassian Confluence