Skip to main content
Skip table of contents

Issue server certificate in PKCS#12 format

In the Nexus Smart ID module Digital ID, a server certificate can be issued via a PKCS#12-formatted software token, with or without approval step. A PKCS#12 software token contains a key pair and the corresponding certificate.

Standard workflow

1Server certificate registration officer

In Identity Manager, selects a server and clicks Request P12 certificate. If needed, edits the certificate data.


2Identity Manager

Checks if there are already installed certificates on the server. If there are, the old certificates can optionally be locked.

3Server certificate registration officerIf existing server certificates were found, selects to lock them or not.-
4Server certificate approverApproves the certificate request.No approval step.
5Identity ManagerRequests a PKCS#12 software token and generates a password.-
6CAIssues a PKCS#12 token. -
7Identity ManagerStores the certificate details and distributes the PKCS#12 token by email or for download, depending on the server configuration in Identity Manager. Displays the password.-

Server certificate registration officer

Downloads the PKCS#12 token from Identity Manager or receives it in an email. Installs the certificate on the server.

Notes the displayed password. Confirms in Identity Manager that the certificate installation was successful.

9Server responsiblesGets an email notification.-

Technical reference

Request P12 certificate with approvalScmProcIssueServerCertP12 (see image)
Request P12 certificate without approvalScmProcIssueServerCertP12WithoutApproval
JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.