ADSS Web RA subscription that is acquired for any group of people (team) or organisation is called an enterprise account. These accounts are registered by admin operators. An enterprise account has three type of users, i.e. Enterprise Owner, Enterprise Admin (RAO) and Enterprise User:


  • Enterprise Owner: While registering an enterprise in ADSS Web RA, no user is created, only an owner of the enterprise is created. Only an enterprise will be created and then the operator will be able to create a user. An enterprise owner could be the CEO of the company who requests to register an enterprise in the ADSS Web RA. 
  • Enterprise Admin/ Enterprise RAO/ LRA Admin: These terms/role names are used interchangeably but all refer to the same role. An enterprise admin is allowed to manage the users and certificate's vetting on behalf of his enterprise. An enterprise admin can invite the users from his organisation to get the certificates. If self registration is disabled in the application then only the invited users via email can register their accounts in an enterprise. The enterprise admin can additionally vet a certificate request, revoke a certificate, delete a user, etc.
  • Enterprise User: An enterprise RAO may send invitations to the organisational staff members of their associated enterprise(s) to bring them under their enterprise umbrella(s). The invitees who accept these invitations become the enterprise users. An enterprise user may have the restricted access to ADSS Web RA and will have to abide by the rules, as configured by their enterprise RAO. An enterprise user can be a part of multiple enterprises.
  • An enterprise can have one or more enterprise RAOs who can manage and vet low assurance certificates.
  • High assurance certificate should always be vetted by the admin RAO because they bear more responsibility and require rigorous verification.
  • The enterprise RAOs can invite users to ADSS Web RA from where they can submit the certificate requests. The enterprise RAOs vet the requests and either approve or reject the requests.
  • An enterprise RAO can be a RAO for one of more enterprises. Similarly, a user can be registered in one or more enterprises using the same email address. Note that when an RAO or user is part of multiple enterprises, he can see the requests or certificates from the selected enterprise only. In short, at a time only one enterprise's data will be shown to the RAO or user.
  • An enterprise RAO can see the activities of an enterprise user by clicking the more options button.
  • An enterprise can have the following statuses, the detailed actions are described in the table below:
    • Active - users are allowed to login the system and submit the new certificate requests
    • Suspended - the enterprise is temporarily suspended. The users of this enterprise can login the system but cannot submit the new requests 
    • Blocked - when you need to permanently block an enterprise. When blocked, neither users can login nor can they submit the request
  • A user can also have the following statuses similar to an enterprise.
    • Active - A user is allowed to login to system and submit the new certificate requests
    • Suspended - the user is temporarily suspended. The users can login the system but cannot submit the new requests 
    • Blocked - when you need to permanently block the user. When blocked, neither users can login nor they can submit the request