Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Info

This article is for X-Road versions >= 7.3.0. Instructions for older X-Road versions are available here.

...

  • Select TOKEN: SOFTTOKEN-0.

  • Press Add key.

...

  • Define an optional label for the key and press Next.

...

Please note that the authentication and sign certificate fields vary between different certificate profiles. If you are not using the certificate profile mentioned in this guide, the certificate fields are different.

  • Usage - AUTHENTICATION.

  • Certification Service - choose the certification service that was defined on the Central Server.

  • CSR Format - select a suitable format for your certificate service. NOTE: The test CA setup only accepts DER as input format.

  • Press Continue.

...

  • Server DNS name (CN) - the Security Server's FQDN.

  • Organization name (O) - write the name of the organization maintaining the Central Server.

  • Press Generate CSR.

...

  • The certificate request is downloaded to browser's download folder.

  • Press Done.

...

Note

When using the test CA as a certification provider, sign the certificate requests according to the instructions:

https://github.com/nordic-institute/X-Road/blob/develop/ansible/TESTCA.md#7-signing-certificates

...

  • Select Security server owners from the list.

  • Press Next.

...

  • Select addressChange, authCertDeletion, clientDeletion, clientDisable, clientEnable, clientReg and ownerChange.

  • Press Add selected.

...