Certificate Authority

DigiCert

4min

This integration enables you to use the KMES Series 3 (6.1) to issue certificates signed by the DigiCert CA. It incorporates DigiCert key signing into the Futurex Registration Authority process.

About DigiCert

DigiCert is one of the world's leading providers of scalable TLS/SSL, Internet of Things (IoT), and PKI solutions for identity and encryption. Many innovative companies, including 89% of the Fortune 500 and 97 of the 100 top global banks, choose DigiCert for its expertise in identity and encryption for web servers and IoT devices. DigiCert supports TLS and other digital certificates for PKI deployments at any scale through its certificate lifecycle management solution, CertCentral®.

What is a registration authority?

Registration authorities (RAs) approve and deny requests for certificates, also known as certificate signing requests (CSRs). The RA presides over and assists the certificate authorities (CAs) by telling them which certificates to issue.

DigiCert acts as an external CA for this use-case.

After approving a CSR, the RA has validated the identity and registration information of the user and permitted the CA to issue a certificate.

Key benefits of the integration

The KMES Series 3 to DigiCert integration enables to perform the following tasks:

  • Automatically download successfully signed requests submitted by the RA
  • Use Futurex approval requirements
  • Revoke signed requests from the RA
  • Resign requests from the RA
  • Cancel pending orders
  • Use rate-limiting mechanisms

Integration overview

To integrate KMES Series 3 with DigiCert, you must perform the following tasks:

  1. Configure DigiCert
  2. Configure the KMES Series 3

The following sections describe how to perform these tasks.