Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
en:services:it_security:pki:start [2023/11/09 15:59] – [... from the GÉANT TCS PKI] thinder | en:services:it_security:pki:start [2024/03/15 13:22] (current) – [... from the GÉANT TCS PKI] thinder | ||
---|---|---|---|
Line 4: | Line 4: | ||
- | Below you will find instructions on how to request certificates with popular web browsers as well as instructions for the use of this certificates. The instructions for certification shall relate to e-mail (S / MIME) certificates. However, the requirement of other types of certificates is designed largely similar. If you have suggestions for further instructions or additional questions, you can send an e-mail to [[support@gwdg.de? | + | Below you will find instructions on how to request certificates with popular web browsers as well as instructions for the use of this certificates. The instructions for certification shall relate to e-mail (S / MIME) certificates. However, the requirement of other types of certificates is designed largely similar. If you have suggestions for further instructions or additional questions, you can send an e-mail to [[support@gwdg.de? |
===== Application for personal email certificate... ===== | ===== Application for personal email certificate... ===== | ||
Line 15: | Line 15: | ||
==== ... from the GÉANT TCS PKI ==== | ==== ... from the GÉANT TCS PKI ==== | ||
- | To apply for an e-mail certificate from the GÉANT TCS CA, which is anchored in the client of the DFN of the GÉANT TCS PKI, please click on the PDF instructions below. | + | To apply for an e-mail certificate from the GÉANT TCS PKI, which is anchored in the client of the DFN of the GÉANT TCS PKI, please click on the PDF instructions below. |
<WRAP center round download 80%> | <WRAP center round download 80%> | ||
Due to frequent changes in the application and issuance process of the GÉANT TCS PKI operator Sectigo, these have been created as a PDF file for easier modification and adaptation. | Due to frequent changes in the application and issuance process of the GÉANT TCS PKI operator Sectigo, these have been created as a PDF file for easier modification and adaptation. | ||
* {{ : | * {{ : | ||
</ | </ | ||
- | If you have any questions, please send an e-mail to [[support@gwdg.de? | + | If you have any questions, please send an e-mail to [[support@gwdg.de? |
===== Detailed description of e-mail encryption with X.509 certificates ===== | ===== Detailed description of e-mail encryption with X.509 certificates ===== | ||
Line 41: | Line 41: | ||
</ | </ | ||
- | ===== Apply for server | + | ===== Apply for server |
- | Call OpenSSL with the following | + | ==== ... from the GÉANT TCS PKI ==== |
+ | To request ACME External Account Binding Information for server certificates from the GÉANT TCS PKI, which is anchored in the client of the DFN of the GÉANT TCS PKI, send an e-mail to [[support@gwdg.de? | ||
+ | |||
+ | <WRAP center round download 80%> | ||
+ | Once you have received the ACME External Account Binding information, | ||
+ | - [[https:// | ||
+ | </ | ||
+ | <WRAP center round important 60%> | ||
+ | (currently only in German) | ||
+ | </ | ||
==== Unix/OS X ==== | ==== Unix/OS X ==== | ||
+ | <WRAP center round info 80%> | ||
+ | Call OpenSSL with the following Parameters | ||
+ | |||
+ | </ | ||
+ | |||
Simple Bash script... | Simple Bash script... | ||
<code bash createcsr.sh> | <code bash createcsr.sh> | ||
Line 61: | Line 75: | ||
===== Apply for server certificate with OpenSSL.cnf ===== | ===== Apply for server certificate with OpenSSL.cnf ===== | ||
+ | <WRAP center round info 80%> | ||
Call OpenSSL with the following Parameters | Call OpenSSL with the following Parameters | ||
+ | |||
+ | </ | ||
==== Unix/OS X ==== | ==== Unix/OS X ==== | ||
Line 256: | Line 273: | ||
<WRAP center round info 100%> | <WRAP center round info 100%> | ||
+ | ==== GÉANT TCS PKI ==== | ||
+ | - [[https:// | ||
+ | <WRAP center round important 60%> | ||
+ | (currently only in German) | ||
+ | </ | ||
+ | |||
==== DFN-Vertein Community CA ==== | ==== DFN-Vertein Community CA ==== | ||
- [[https:// | - [[https:// | ||
- [[https:// | - [[https:// | ||
- [[https:// | - [[https:// | ||
- | ==== GÉANT TCS PKI ==== | ||
- | - [[https:// | ||
- | |||
<WRAP center round important 60%> | <WRAP center round important 60%> | ||
Line 269: | Line 289: | ||
</ | </ | ||
+ |