2.2 Setting up client authentication for Entrust CA Gateway access

Before you configure MyID for Entrust CA access through the Entrust CA Gateway, you must have a client authentication certificate to allow secure communication between MyID and the Entrust CA Gateway endpoint. Where multiple CAs are being managed through multiple endpoints, you may have to provide a client authentication certificate for each endpoint.

1. The client authentication certificate can be issued from any certificate authority if it is available to CAPI or CNG.

   Note: Do not enable strong private key protection on the certificate, as this may prevent processing of the request by the MyID account.

2. Once you have the client authentication certificate:

   1. Log on as the MyID COM+ user account that is used to run the MyID components.

   2. Install and save the certificate as a .cer file (in binary or Base64-encoded X.509 format).

   3. Save the file in a location that is accessible to the MyID application on the application server.