This section lists down the settings for the CMP protocol


Expand Enrolment Protocol(s) > Settings > CMP.


Field

Description

Challenge Type

The CMP provides an additional layer of security using the challenge value. The device puts this challenge in the device CSR and the ADSS Web RA verifies this challenge as part of request validation. There are three challenge password options available as following:

  • None - No challenge password is required in the CSR request from the device
  • Fixed - When this option is used, the administrator sets the fixed challenge password. This challenge password will be used for each device in each enterprise. In short, this is the application level challenge password for each registered device
  • Random - The CMP Server generates a unique challenge password for each device when a device is registered in the ADSS Web RA Web and the device must have to pass this password in the request to get the certificate

CMP URL

This is the CMP URL that the devices will use to communicate with the ADSS Web RA. It will appear in a disabled form (Added in the admin portal)


This screen will display items including the CMP URL, challenge type and challenge password that you can set in the ADSS Web RA web portal, as displayed below: