Skip to main content
Version: 3.22

Requests

After configuring the required items you can create a certificate requisition, or even import a previously created requisition.

Requisitions are necessary so that the security understands which type of certificate you want to obtain, and by which authority it should be signed, so please follow the instructions in the following sections correctly:

Add a request

To request a certificate manually you will need to fill out a form with the details of the desired certificate, to do so access the menu: Certificates ➔ Requests, and:

  1. Click the View actions button in the report and choose the New option.

  2. In the form choose the Certificate type that you want to obtain, which may be:

    • DV SSL: only checks and validates the address

    • OVSSL: gives a name, documentation and physical location for the organisation of the information.

    • EV SSL: the organization goes through a complete validation of domain, name, registration, physical address, current operations and others.

  3. Then choose the type of domain that the certificate will be part of.

  4. In the Organization field select the option you created in the previous chapter. And click Add.

  5. Enter the Common name, this field is important for the identification of the certificate in the system, this way it will be easier to find the certificate that you want to be signed by a certain authority or that is published in a specific device. So put a name that helps you and other users of this module understand its relevance.

  6. Select the type of Encryption algorithm you want the certificate to have, remember to choose the algorithm that fits your organisation's security criteria.

  7. Also select the Encryption key size.

  8. Choose also the Certificate signing algorithm, this algorithm will be used to sign the certificate through the certification authority.

  9. Finally select the period in days that you want this certificate to remain valid and click Save.

info

For more security you can also determine a password for viewing the certificate in the Store password field. Likewise, determine a password for the certificate to be revoked in the Revocation password field, i.e., only those who know the password may revoke the certificate.

Import a request

If you already have a requisition ready, you can import it into the senhasegura that will process it to generate the certificate. To import a requisition follow the instructions below:

  1. On the menu: Certificates ➔ Requests and click the View actions button and choose the option Import request.

  2. Select the certificate file .csr2 on your machine and then select the file .key with the certificate key.

    info

    PFor more security you can also determine a password for viewing the certificate in the Store password field. Likewise, determine a password for the certificate to be revoked in the Revocation password field, i.e., only those who know the password may revoke the certificate.

  3. Choose the Certificate signing algorithm, this algorithm will be used to sign the certificate through the certification authority.

  4. Then select the Certificate type you want to get, which can be:

    • DV SSL: only checks and validates the address

    • OVSSL: gives a name, documentation and physical location for the organisation of the information.

    • EV SSL: the organization goes through a complete validation of domain, name, registration, physical address, current operations and others.

  5. Choose the type of domain that the certificate will be part of.

  6. In the Organization field select the option you created in the previous chapter. And click on Add.

  7. Click Save

With that the certificate will be generated by the security password and will be ready to be signed.

caution

If the user requesting the certificate is in a group that requires approval, the certificate will only be available for signing after approval by one of the group's approving users.