Creating CA Gateway credentials

Create PKCS #12 credentials to connect with the CA Gateway API.

ℹ Unless deleted before expiry, credentials are valid for one year. See Renewing CA Gateway credentials for how to renew them before the expiry date.

To generate a CA Gateway credential:

1. Follow the steps described in Accessing your partitions to log into the PKIaaS interface as a user with any of these roles:

   • Owners
   • CA Administrators

2. Click User Management in the sidebar.

3. Select the CAGW Credentials tab.

   

4. Click CREATE.

5. Fill in the Credential identifier and Friendly Name fields.

6. Click Create

7. Check the details of the new PKCS #12 credential.

   

8. Copy the password displayed in the information note.

   ---

   ⚠ You won’t be able to copy the password or download the PKCS #12 file after leaving this page.

   ---

9. Click Download Credential to download the pkcs12-<credential>.p12 file, where <credential> is the Credential identifier value.

10. Click CAGW Credentials in the sidebar.

11. Click Continue in the Are you sure you want to leave this page? dialog.

12. In the CAGW Credentials tab, click ACTIONS for the new credential.

    

13. Select Add Certificate Authority.

14. In the Certificate Authority list, select the CA on which the credential holders will have permissions.

    

15. In the Roles list, select the roles granted to the credential holders in the CA.

    ---

    ℹ See Role permissions for the CA management permissions granted to each role.

    ---

16. Click Add.