Summary:
Comodo is a pluggable certificate authority driver of Venafi Encryption Director (VED). The purpose of the driver is to request SSL Certificates from the Comodo Certificate Authority (CA).
More Info:
First create the 'Certificate Authority' object, as per this article:
Creating Certificate Authority Object KB
Steps to configure Comodo:
Complete the Comodo CA object:
- General
- Description – Create a description for this object.
- Contact – User or group identities to be assigned to this object. The default notifications are sent to these contacts.
- Connection
- Credentials – The username and password that is associated with your Comodo account.
- Validate – After entering the Credentials, click on the Validate button to validate the web service connection and to retrieve product names and available validity periods for each of them.
- Options
- Unit Type – Choose the type of certificate this object will request.
- Subject Alt Name Enabled – If the check box is enabled, your account supports Subject Alt Name (SAN). Set it to checked if this object is to be used to request certificates with SANs.
- Company Number – Your Company’s DUNS (Dun and Bradstreet) number. This field appears only if an EV certificate is included in the Comodo Selected Templates list. The DUNS number is required for EV certificates.
- Domain Control Validation – Choose if you need to enable Domain Control Validation.
- Domain Control Validation Email – Choose the email address used for Domain Control Validation.
- Validity Period
- Supported Validity Periods (Years) – Lists the supported validity periods for the selected Product Name.
- Available Validity Periods (Years) – Choose the validity period(s) that this object needs to support from the list of Supported Validity Periods on the right.
After filling out all of the entries, click on the 'Apply' button to save the settings.
Associating Comodo CA object to a Certificate object:
Now either create a new certificate object or navigate to an existing certificate object. Select the ‘Settings’ tab and for ‘CA Template’ in the ‘Other Information’ section, choose the Comodo CA object you just created above. Select the new ‘Comodo’ tab that will appear on the tab panel above.
Complete the remaining certificate specific Comodo CA fields:
- Settings
- Street Address – Your organization’s street address. Important: This field must match your Domain’s whois record; otherwise, Comodo will not approve any Extended Validation (EV) certificates submitted through this CA configuration.
- Postal Code – Your organization’s postal code.Important: This field must match your Domain’s whois record; otherwise, Comodo will not approve any EV certificates submitted through this CA configuration.
- Server Type – The type of server that the certificate is being placed on. This information can be used by the organization for reporting purposes.
- Number of Servers – This number of systems this certificate will be installed on.
- Validity Period – The amount of time, in years, this certificate will be issued for. This list show only the supported validity periods that were selected in the above created Comodo CA object.
After filling up all the entries, click on the 'Apply' button to save the settings.
Comments