D-Trust

  1. Go to Identities > Key enrolment > Key enrolment provider.
  2. Click Add.
  3. Select D-Trust as the provider.
  4. Enter the name of the certificate template and the operator address. You can obtain both information from D-Trust.

    NOTE: The operator address is the email address that is used to handle requests. This address is used as the sending address for all requests and must be reachable.

    NOTE:

    The following certificate templates are supported:

    • ADVANCED_PERSONAL_ID_1
    • ADVANCED_PERSONAL_ID_2
    • ADVANCED_ENTERPRISE_ID_1
    • ADVANCED_ENTERPRISE_ID_2
    • ADVANCED_TEAM_ID_1
    • ADVANCED_TEAM_ID_2
  5. Enter a prefix if you want to request a pseudonymised certificate. Alternatively, select one of the default values pseudonym or pseudo.
  6. Determine whether you want to publish your key to Open Keys. See Using Open Keys.
  7. Click Finish.

NOTE: In order to use D-Trust as a provider, you must have concluded a valid contract with Deutsche Bundesdruckerei and imported the D-Trust certificate int the certificate administration.

See

Integrating D-Trust