This section shows you the steps to register X.509 certificates in the Trust Manager. To perform the required configuration, following steps are required: 

Steps

Description

Step 1:

Identify and register the required TA in the General tab.

Step 2:

Define the primary and secondary retrieval methods to check the revocation status of CA. The retrieval methods include real-time OCSP call or CRL retrieval via a real-time full certificate status database.

Step 3:

If the CRL method was selected for the certificate status checking process for a CA, then the next step is to define the CRL repository address(es) for this CA and associated CRL processing policy.

Step 4:

This step includes defining the quality ratings of the CA as per Certificate Policy OID and identifying one or more timestamps authorities for use when using a certificate issued from this CA.


See also

Domestic CVCAs
Foreign CVCAs