Summary:
This article details the configuration needed to successfully setup the Commdo Certificate Authority (CA) Object in Venafi Certificate Manager
More info:
Creating the CA template object:
- Create the Commodo Certificate Authority Object in your chosen Policy folder.
- Add > Certificate Authorities > Comodo
- The required fields are:
- Credentials - A credential object needs to be created, and filled in with the values sent to you from Comodo.
- The unit type needs to be chosen - these will be downloaded to you once the correct credentials are used.
- Company number - This will be supplied from Comodo but only on Extended Validation (EV) certificates.
- You will need to choose a validity period both here in the CA Template object, and on the Comodo tab of the Certificate object. Later on in this article we talk through how to setup a certificate object.
TIP: Choosing the unit type EV SSL certificate above will stop the request at stage 700, waiting for validation (Full). See the below screenshot for an example. This is NOT an error, and is a normal stage for an Extended Validation (EV) Certificate. Using another unit type can be used if you do not require Extended Validation for your certificate. More information on an EV certificate can be found here - http://ssl.comodo.com/ev-ssl-certificates.php
Creating Certificate Object:
- The object can be created in the policy container of your choice, and you will need to configure the information needed to form, and post a Certificate signing request (CSR) to the Comodo CA.
- Fill out the settings tab as per your normal company policies and procedures, being sure to choose the "..." button at the bottom of the tab, and navigating to the CA template object you created above.
- Once the CA template object is linked, you noticed a new tab on the certificate object called Comodo.
- You will need fill out the settings on this new tab, being sure to provide the address details you proposed to the Comodo CA. All fields need to be filled out, including the validity period.
- Ensure you choose a server type here, and validity period.
Comments