Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision
Previous revision
en:services:it_security:pki:gwdgras [2022/05/09 15:50] thinderen:services:it_security:pki:gwdgras [2024/01/31 10:11] (current) – [List of GWDG-RAs] Header changed thinder
Line 1: Line 1:
 +====== List of GWDG-Community-RAs ======
  
 +===== DFN-Verein Community CA =====
 +<WRAP center round tip 60%>
 +For further questions or information about the RAs, please send an e-mail to [[gwdg-ca@gwdg.de]]
 +
 +</WRAP>
 +
 +<WRAP center round box 100%>
 +|[[https://pki.pca.dfn.de/dfn-verein-community-ca/cgi-bin/pub/pki?cmd=getStaticPage&name=index&RA_ID=2200|GWDG - Gesellschaft für wissenschaftliche Datenverarbeitung mbH]] | Certificate request for | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2200/certificates/new/1|User]] | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2200/certificates/new/pn/1|Pseudonym]] | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2200/certificates/new/group/1|Group]] | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2200/certificates/new/server/1|Server]] | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2200/certificates/new/pkcs10/1|PKCS10]] | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2200/certificates|Retrieve certificate]] | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2200/revoke|Revoke certificate]] |
 +|[[https://pki.pca.dfn.de/dfn-verein-community-ca/cgi-bin/pub/pki?cmd=getStaticPage&name=index&RA_ID=2180|GBV - Gemeinsamer Bibliotheksverbund]]                            | Certificate request for | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2180/certificates/new/1|User]] | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2180/certificates/new/pn/1|Pseudonym]] | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2180/certificates/new/group/1|Group]] | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2180/certificates/new/server/1|Server]] | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2180/certificates/new/pkcs10/1|PKCS10]] | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2180/certificates|Retrieve certificate]] | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2180/revoke|Revoke certificate]] |
 +|[[https://pki.pca.dfn.de/dfn-verein-community-ca/cgi-bin/pub/pki?cmd=getStaticPage&name=index&RA_ID=2190|DPZ - Deutsches Primatenzentrum GmbH]]                            | Certificate request for | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2190/certificates/new/1|User]] | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2190/certificates/new/pn/1|Pseudonym]] | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2190/certificates/new/group/1|Group]] | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2190/certificates/new/server/1|Server]] | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2190/certificates/new/pkcs10/1|PKCS10]] | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2190/certificates|Retrieve certificate]] | [[https://pki.pca.dfn.de/dfn-pki/dfn-verein-community-ca/2190/revoke|Revoke certificate]] |
 +
 +==== Certificate Chain ====
 +[[https://pki.pca.dfn.de/dfn-verein-community-ca/cgi-bin/pub/pki?cmd=getStaticPage;name=index;id=2&RA_ID=2170|DFN-Verein Community CA]]
 +=== Fingerprints ===
 +DFN-Verein Community Root CA 2022 [588154653f9fc85a37f579bcfacd2b1dd91084ee]
 +
 +DFN-Verein Community Issuing CA 2022 [7fff90e32cd761ca6680ef7ea51d3916e5b40062]
 +</WRAP>
 +
 +
 +===== D-GRID =====
 +<WRAP center round box 100%>
 +|[[https://pki.pca.dfn.de/grid-root-ca/cgi-bin/pub/pki?cmd=getStaticPage&name=index&RA_ID=119|D-GRID-RA GWDG]] | Certificate request for | [[https://pki.pca.dfn.de/dfn-pki/grid-root-ca/119/certificates/new/1|User]] | [[https://pki.pca.dfn.de/dfn-pki/grid-root-ca/119/certificates/new/pn/1|Pseudonym]] | [[https://pki.pca.dfn.de/dfn-pki/grid-root-ca/119/certificates/new/group/1|Group]] | [[https://pki.pca.dfn.de/dfn-pki/grid-root-ca/119/certificates/new/server/1|Server]] | [[https://pki.pca.dfn.de/dfn-pki/grid-root-ca/119/certificates/new/pkcs10/1|PKCS10]] | [[https://pki.pca.dfn.de/dfn-pki/grid-root-ca/119/certificates|Retrieve certificate]] | [[https://pki.pca.dfn.de/dfn-pki/grid-root-ca/119/revoke|Revoke certificate]] |
 +
 +==== Certificate Chain ====
 +[[https://pki.pca.dfn.de/grid-root-ca/cgi-bin/pub/pki?cmd=getStaticPage;name=index;id=2&RA_ID=119|D-GRID]]
 +</WRAP>
 +
 +
 +===== Wildcard Certificates =====
 +<WRAP center round box 100%>
 +<WRAP center round important 80%>
 +**Since 26.09.2019, wildcard certificates can be applied in the competent RAs listed on this [[#dfn-verein_community_ca|page]] above.
 +**</WRAP>
 +</WRAP>
 +
 +===== DFN-Verein Community CA/D-GRID - Guide =====
 +
 +==== Apply for a certificate ====
 +According to the following, as described in [[https://www.gwdg.de/documents/20182/27257/GN_4-5-2020_www.pdf#page=26|GN 04-05|20]] (currently only in German) in the paragraph "Der neue Beantragungsweg", the path to the new application pages is described, this will change from Fig. 2 there as described in the following.
 +
 +{{:en:services:it_security:pki:email_1.1_nachtrag_01_en.png?800|There are now two larger buttons. To apply, click the "Apply for a new user certificate" button.}}
 +
 +There are now two larger buttons. To apply, click the "Apply for a new user certificate" button.
 +
 +{{:en:services:it_security:pki:email_1.1_nachtrag_02_en.png?800|Enter the required data for the user certificate and click on the "Next" button.}}
 +
 +Enter the required data for the user certificate and click on the "Next" button.
 +
 +{{:en:services:it_security:pki:email_1.1_nachtrag_03_en.png?800|A summary of the information is displayed. If everything is fine, click on the "Save request file" button.}}
 +
 +A summary of the information is displayed. If everything is fine, click on the "Save request file" button.
 +
 +{{:en:services:it_security:pki:email_1.1_nachtrag_04_en.png?800|A password for the application file must be entered and confirmed by clicking on "Ok".}}
 +
 +A password for the application file must be entered and confirmed by clicking on "Ok".
 +
 +{{:en:services:it_security:pki:email_1.1_nachtrag_05_en.png?800|The application file is stored in the download directory of the web browser used.}}
 +
 +The application file is stored in the download directory of the web browser used.
 +
 +With the application you signed, please go to the responsible RA operator in your institute.
 +
 +For personal identification, please have your valid ID.
 +
 +After personal identification and verification of the certificate application, the responsible RA operator will issue your certificate application.
 +
 +You will receive an e-mail with your certificate attached after your personal e-mail certificate has been issued.
 +
 +
 +==== Certificate pick up ====
 +
 +After clicking on the URL in the mail or by copying and pasting into the address line of the browser with which the certificate was requested, click on "Pick up a requested certificate".
 +
 +{{:de:services:it_security:pki:email_1.1_nachtrag_01_en.png?800|}}
 +
 +To specify or select the application file, click Browse and select the associated application file for the certificate to be obtained. The browsers store this file in the **Downloads** folder of the user.
 +
 +{{:de:services:it_security:pki:email_1.1_nachtrag_06.png?800|}}
 +
 +{{:de:services:it_security:pki:email_1.1_nachtrag_07.png?800|}}
 +
 +The information in the application file is displayed. If everything fits click "Next".
 +
 +{{:de:services:it_security:pki:email_1.1_nachtrag_08.png?800|}}
 +
 +If an attempt is made to retrieve the certificate and the confirmation email has not yet been received, you will receive the following error message.
 +
 +{{:de:services:it_security:pki:email_1.1_nachtrag_09.png?800|}}
 +
 +If the pickup worked, the data of the currently collected certificate is displayed in an overview. Clicking on "Save Certificate File" initiates the completion of the pickup.
 +
 +{{:de:services:it_security:pki:email_1.1_nachtrag_10.png?800|}}
 +
 +To secure the certificate file to be saved, it is now imperative to enter a certificate password. Clicking OK completes the process.
 +
 +{{:de:services:it_security:pki:email_1.1_nachtrag_11.png?800|}}
 +
 +At the end of the collection, an information page with important information that should be considered will be displayed.
 +
 +{{:de:services:it_security:pki:email_1.1_nachtrag_12.png?800|}}
 +
 +
 +===== Detailed description of e-mail encryption with X.509 certificates =====
 +For further steps and detailed instructions on how to install and use the certificate (the file with the file extension .p12 in the download directory of the web browser used) in different e-mail clients, please read the following documents.
 +
 +<WRAP center round info 100%>
 +==== DFN-Verein Community CA ====
 +  - [[https://www.gwdg.de/documents/20182/27257/GN_4-2021_www.pdf#page=6|GWDG Nachrichten 4|21]] - Weitere Überarbeitung des Beantragungsweges für Nutzerzertifikate in der DFN-PKI
 +  - [[https://www.gwdg.de/documents/20182/27257/GN_12-2019_www.pdf#page=9|GWDG Nachrichten 12|19]] - Teil 1: Beantragung und Sicherung von Zertifikaten
 +
 +==== Universally applicable to X.509 certificates ====
 +  - [[https://www.gwdg.de/documents/20182/27257/GN_1-2-2020_www.pdf#page=14|GWDG Nachrichten 1-2|20]] - Teil 2: Installation und Verteilung von Zertifikaten
 +  - [[https://www.gwdg.de/documents/20182/27257/GN_3-2020_www.pdf#page=6|GWDG Nachrichten 3|20]] - Teil 3: Outlook-E-Mail-Anwendungen
 +  - [[https://www.gwdg.de/documents/20182/27257/GN_7-8-2020_www.pdf#page=8|GWDG Nachrichten 7-8|20]] - Teil 4: Apple E-Mail-Anwendungen
 +  - [[https://www.gwdg.de/documents/20182/27257/GN_11-2020_www.pdf#page=12|GWDG Nachrichten 11|20]] - Teil 5: Thunderbird, Notes und Mutt
 +  - [[https://www.gwdg.de/documents/20182/27257/GN_5-2021_www.pdf#page=8|GWDG Nachrichten 5|21]] - Teil 6: Private Zertifikate mit der Volksverschlüsselung
 +
 +<WRAP center round important 60%>
 +(currently only in German)
 +</WRAP>
 +
 +</WRAP>