2.3 Set up the MyID Entrust certificate authority
Note: MyID supports multiple Entrust CAs when accessed through Entrust CA Gateway endpoints.
To edit a Certificate Authority (CA):
-
From the Configuration category, select Certificate Authorities.
-
Click New.
-
From the CA Type drop-down list, select Entrust Rest.
-
Click the Set Certificate Store option.
-
Set the following fields:
-
CA Name – Enter the name that you will use to identify the CA.
-
CA Description – Enter a description for the CA.
-
Retry Delays – A semi-colon separated list of elapsed times, in seconds.
For example, 5;10;20 means:
-
If the first attempt to retrieve details from the CA fails, a second attempt will be made after a 5 second delay.
-
If this second attempt fails, the CA will be contacted again after 10 seconds.
-
Subsequent attempts will be made to retrieve information every 20 seconds, until a response is received.
If you want to limit the number of retry attempts, enter 0 as the last number in the sequence.
-
-
CA Path – Enter the identity assigned to the CA. Request this information through the CA administrator.
-
Service Point – This is the URL of the Entrust CA Gateway-hosted Rest API service.
-
Certificate Store – location of the client authentication certificate .cer file, as configured in section 2.2, Setting up client authentication for Entrust CA Gateway access. For example:
C:\Certs\EntrustCert.cer
-
Select Enable CA to make the policies available for issue.
-
6. Click Save to save these setting to the database. MyID is now ready to issue certificates.