6.3 Enabling certificates on a CA

All certificate policies are detected when you add the CA to MyID, but they are all initially disabled. You can enable the specific policies you want to use.

To enable certificate policies for a CA:

1. From the Configuration category, select Certificate Authorities.

2. Select the configured Certificate Authority from the list.

3. Click Edit.

   

4. Make sure Enable CA is selected.
5. From the list of Available Certificates, select the Certificate Policy you want to work with.
6. To enable the certificate, click Enable (Allow Issuance).

7. Edit the certificate policy options.

   The available attributes depend on the CA you are using. They may include: key length, duration, the certificate lifetime, whether the certificates can be issued to hardware (written to cards or tokens), as soft certificates (stored as a file on the computer), or both.

   See your CA integration guide for details.

8. Click Save.

Note: Changes made to certificate profiles do not take effect immediately, as the normal interval for MyID to poll for updates is 50 minutes. To force MyID to poll for changes immediately, you must manually restart the eKeyServer service, and then restart the eCertificate service.