DigiCert

1. Go to Identities > Key enrolment > Key enrolment provider.
2. Click Add.
3. Select DigiCert as your provider.
   
   
4. Enter a unique name and the API key you received from DigiCert and click Next.
   

   NOTE: Make sure that the API key is restricted to Orders, Domains, Organizations. We advise against configuring the restriction No restriction.

   NOTE: The API key must be assigned to a user who is allowed to view organisations, i.e. either Administrator (unrestricted) or Manager (unrestricted).

   

5. Select the product, the organisation and the validity of the key and click Next.
6. Enter a prefix if you want to request a pseudonymised certificate. Alternatively, select one of the default values pseudonym or pseudo.
7. Determine whether you want to publish your key to Open Keys. See Using Open Keys.
8. Click Finish.

NoSpamProxy supports the DigiSign certificates Secure Email for Business and the Premium client certificates.

NOTE: From version 15.5, you must create a separate AD group for system mailboxes, for example info@example.com or and support@example.com. Under Automatic key enrolment in the group settings, you must then select the option Use pseudonym prefix for requests. See Automating the user import.