When a software token is expiring, a person can renew it in Smart ID Self-Service.
Standard workflow
|
|
Actor |
Action |
Option |
|---|---|---|---|
|
1 |
Identity Manager |
On a configurable interval, Identity Manager runs the Expiry check, which finds all software tokens that will expire within the coming period. For each affected user, the steps below are done. |
- |
|
2 |
Software token user |
Receives an email with instructions. Logs in to Smart ID Self-Service, clicks Open Tasks, and confirms or rejects the renewal. |
- |
|
3 |
CA |
Issues new certificates. |
- |
|
4 |
Identity Manager |
Generates and displays passphrases for the certificates in Open Tasks, and shows the software token in Certificates. |
- |
|
5 |
Software token user |
For each software token, receives an email with the certificate attached in a PKCS#12 container and instructions on how to install the certificate locally. |
- |
Technical references
-
PstmProcRenewSofttoken
Sub-process:
-
PstmSubProcRenewSofttokens