All interfaces and services will by default trust this CA, meaning that for interfaces that support client authentication, a client certificate, issued from this initial KeySecure root CA, will automatically be trusted by the system. This CA is used to issue initial server certificates for the interfaces available in the system.Īn easy way to inspect the certificate chain is to view the certificates in your browser when you connect to the web interface. The first time a CipherTrust Manager is started, a new local KeySecure root CA is automatically generated. In this case certificates are issued externally. Instead an external CA is used as a trusted entity for various interfaces and services inside the system. An external CA does not store the private key. ![]() A local CA can issue signed certificates since the private signing key is stored inside the CipherTrust Manager system. ![]() The CA issues and installs digital certificates and issues certificate signing requests (CSR).Ī certificate generally acts as the identity of a server or client and this API can be used to issue server and client certificates for setting up trusted communication channels to the CipherTrust Manager system.ĬipherTrust Manager distinguishes between local CAs and external CAs. A Certificate Authority (CA) acts as the initially trusted shared entity between peers and issues signed certificates to make it possible for each party to trust the other.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |