1 Introduction

This document provides a step-by-step guide to the installation and configuration requirements to integrate the Entrust CA (Certification Authority) with MyID^® using the Entrust Authority Security Administration Toolkit for Java (JASTK).

Important: This support for JASTK supersedes MyID's integration with Entrust using the Entrust Administration Toolkit for C, as documented in the Entrust CA Integration Guide. For assistance with migrating from the Entrust Administration Toolkit for C to the Entrust Authority Security Administration Toolkit for the Java Platform (JASTK), contact Intercede customer support quoting reference SUP-389.

You can use Entrust certificates in exactly the same way as any other certificate within MyID. For example. you can issue certificates to devices such as smart cards or VSCs, or to the local system as soft certificates.

MyID's integration with Entrust JASTK supports both RSA and ECC keys:

• For RSA keys, you can use certificates with 2048, 3072, and 4096 bit keys; 1024 bit keys are not currently supported with this CA.

• For ECC keys, you can use certificates with ECC NIST P256, P384, and P521 curves.

  Note: The Entrust Authority Security Toolkit for the Java Platform (ETJava) version 9 does not support ECC keys for escrow.