Certificate Profiles

Because the AnyCAGateway REST is added into Keyfactor Command as an HTTPS CA A certificate authority (CA) is an entity that issues digital certificates. Within Keyfactor Command, a CA may be a Microsoft CA or a Keyfactor gateway to a cloud-based or remote CA., certificate profiles are created here and then combined with an end-entity profile to create a certificate template A certificate template defines the policies and rules that a CA uses when a request for a certificate is received. in Keyfactor Command. All AnyCA Gateway profiles will have the same end entity prefix of AnyCA_, which is NOT configurable. When templates are imported into Keyfactor Command from the gateway, they will have the naming convention AnyCA_<certificate profile name> for the short name and AnyCA (<certificate profile name>) for the display name. Configuration settings, name and key types may also be set through the Keyfactor Command Management Portal.

Figure 763: Keyfactor Command Management Portal - Certificate Templates

Figure 764: Certificate Profiles Grid

To add a certificate profile:

Navigate to the AnyCAGateway REST portal.
Select the Certificate Profiles Tab.
Click Add on the menu bar to add a new profile, or highlight an existing profile and select Edit from the menu bar or the right click menu.
Enter a Name for the Certificate Profile. This name, combined with the fixed end-entity prefix of AnyCA_, will define the template in Keyfactor Command. The name cannot be changed once saved.
Select the Key Algorithms that the profile will support using the check boxes and the drop downs for RSA and ECDSA.
Click Save.
Important: If you are in the process of installing AnyCA Gateway, return to the Certificate Authorities page in the AnyCA Gateway portal. Open the CA to the Templates tab and add the templates to the CA per the instructions on the Templates tab (see The Templates Tab).

Figure 765: Certificate Profile Add/Edit

Version v24.4.1

On this page: