GlobalSign-specific sections in MPKI
Sections on this page:
Depending on the contract, the necessary settings have to be made here. These are provided by GlobalSign.
Parameters |
Description |
|---|---|
By default, this is set to https://system.globalsign.com/services/cr/ws/GasOrderService. Specifies the URL that is to be accessed via the MPKI. Specified by GlobalSign. |
|
By default, this is set to EPKIPSPersonal. Specified by GlobalSign. |
|
Specified by GlobalSign. |
|
Validity period of the certificates to be issued (one to three years). Specified by GlobalSign. |
|
User name of the customer at GlobalSign. This user must have administrator rights in the GlobalSign customer portal. Specified by GlobalSign. |
|
Password associated with Account |
|
In addition to the entries mentioned above, the IP address ofthe SEPPmail Secure E-Mail Gateway must be activated in the GlobalSign customer portal for automatically obtaining the certificates! |
Section Domain specific parameters (optional)
If the SEPPmail Secure E-Mail Gateway manages several email domains (Managed Domains), this option can be used to specify specific parameters for creating user certificates for each domain.
After saving the domain specific option via Save entries another input field appears in each case.
Parameters |
Description |
||
|---|---|---|---|
Specified by GlobalSign. |
|||
Specifies the email domains for which the following two parameters should be valid. Only domains which were also named when the application was submitted to the certification body, or which were later validated separately, may be entered.
|
|||
Specification of the Product code which may differ from the default parameter. Specified by GlobalSign. |
|||
Validity period of the certificates to be issued (one to three years). Specified by GlobalSign. If nothing is entered here, the value from Default parameters is used. |
|||
Specification of the Account which may differ from the default parameters. Specified by GlobalSign. |
|||
Only required if the Account differs from the default parameters. Specified by GlobalSign, if necessary. |
|||
Settings for the automatic renewal of certificates.
|
The validity period of the certificates of the individual users can be found in the file user-stats.csv which comes with the Daily Report (see also Groups statisticsadmin). This is especially helpful if no automatic renewal of certificates has been set. |
Parameters |
Description |
|||
|---|---|---|---|---|
|
This option is inactive by default and pre-set to 30. Initiates the automatic renewal of certificates of active users (Users) if the remaining validity period is the set value. One pre-condition in this respect is that the corresponding user sends an email within the set overlap time. This prevents certificates from being obtained for "corpses" in the Users menu, including certificates subject to a fee, if applicable. The thus initiated process runs overnight (!).
|
|||
|
By default, this option is inactive. This function obtains a certificate for all existing active Users, who are not in possession of a valid (!) certificate, automatically overnight (!).
Active Users are users who have sent an email in the last 30 days and do not have the State inactive.
|
|||
By clicking on Add or update..., the intermediate certificates under X.509 Root Certificates required for supplementing the certificate chain when signing are added/updated.
|
||||
The changes made are saved via the Save button.
