Test a certificate request, approval, and issuance

this section shows you how to initiate a certificate request in venafi tpp through the {{futurex}} adaptable ca driver, approve the request on the {{k}} , and view the issued certificate in venafi tpp request a certificate perform the following steps to initiate a certificate request in venafi tpp log in to venafi trust protection platform select inventory > certificates in the main menu select \[ create a new certificate ] in the upper right corner of the page in the certificate folder drop down menu, select the certificate policy you created and specify the required values in the fields that populate you must select enrollment for the management type you can use various formats to specify the certificate validitity period , such as 1 year , 1y , 2 years , 2y , 1mo , 3 weeks , 1 week , 1 weeks , 10d , 10 days , and so on select \[ next ] when finished in the csr generation drop down menu, select generate a csr for me , specify the necessary values for the csr, and select \[ next ] when finished specify any additional information you want to include in the request, such as subject alternate names (dns) specify the subject alternate names (sans) you specify in uri format then, select \[ create certificate ] you should see a message stating that the certificate request has been submitted if you configured the dual user roles option to separate certificate requesting and certificate approval responsibilities, you might see the following message after submitting the certificate request this is expected behavior an error occured failed to approve request with error command failed failed to update x509 requests uploader cant approve own upload approve the certificate request on the {{k}} perform the following steps to approve the certificate request on the {{k}} log in to the {{k3}} application interface with the default admin identities go to administration > signing workflow you should see the certificate signing request inside your venafi adaptable ca approval group right click the pending certificate request and select \[ approve ] when notified that the new status of the certificate request is approved , select \[ ok ] the signing workflow menu shows the status of the certificate as signed view the issued certificate in venafi tpp perform the following steps to view the {{k}} issued certificate in venafi tpp log in to the venafi trust protection platform select policy tree in the main menu expand the policy you created and select the relevant certificate request if you configured the dual user roles option to separate certificate requesting and certificate approval responsibilities, you should see the following certificate status failed to approve request with error command failed failed to update x509 requests uploader cant approve own upload select \[ retry ] to retry the request from the current stage you should see the following message after doing so queued for retry of current stage select \[ refresh ] after a few seconds, and the certificate status should change to ok