GlobalSign API for SSL Certificates
|
|
- Daniela Hopkins
- 5 years ago
- Views:
Transcription
1 GlobalSign API for SSL Certificates Implementation Guide and Definitions Version Version Release Notes Version Changes 08/26/ Reorganized sections for readability and flow, added expanded derscriptions of the ordering process and ordering options for each of the products. - Identified new test system URLs - Identified new location for Random Value (meta-tag) for HTTP Domain Validation, per CA/B Forum Ballot Removed 4 and 5 year validity period options - Removed SHA-1 references as SHA-1 has been deprecated - Replaced list of ModificationEventName responses with new values - Updated list of error codes and descriptions - Clairifed the definition of Custom Validity Period. - Added new API field to request specific values for KeyUsage and Extended Key Usage Version Changes 06/2/ Replaced ValidateOrderParameters with DecodeCSR in recommended workflow - Added reference to hash algorithm specific product codes in addendum - Added reference to validity period constraints in addendum - Removed mention of obsolete TestOV product code - Updated BaseOptions to include correct GlobalIP syntax Version Changes 03/14/ Updated Reissue Function for Hash Algorithm SHA section 11.6 Copyright GlobalSign, Inc. All rights reserved. GlobalSign, the GlobalSign logo and OneClickSSL are trademarks and registered trademarks of GlobalSign, Inc. or its affiliates in the United States and other countries. All other trademarks are the property of their respective owners.
2 Contents 1. Outline SSL Product Type Explanations AlphaSSL DomainSSL OrganizationSSL Extended SSL Summary of key SSL Product Features Anti-Phishing Checks Background Web Service Functions Workflow Overview SSL Functions Service/Query Functions Account Functions Delivery of Issued Certificates by WSDL & API URL s Ordering DomainSSL & AlphaSSL Certificates Ordering a DomainSSL or AlphaSSL Certificate Using Validation Ordering DomainSSL or AlphaSSL Using HTTP (URL) Verification Ordering DomainSSL or AlphaSSL Using DNS Verification Ordering OrganizationSSL Certificates OrganizationSSL Certificate Request Ordering the OrganizationSSL Certificate Ordering ExtendedSSL Certificates Decode CSR Ordering the ExtendedSSL Certificate General SSL Functions Receive List of Approver Addresses and perform phishing DB check Changing the SubjectAltName in Certificate Change SubjectAltName Create Cert-Invites (CertInviteOrder) Change Approver (ChangeApprover ) Re-Send Approver (Resend ) Modify Existing Order (ModifyOrder) Service & Query API Calls Decode CSR Get Issued Certificate Single Certificate (GetOrderByOrderID) Query API to get Issued Certificate - Multiple Orders (GetOrderByDateRange) Query API to Get Recently Modified Orders (GetModifiedOrders) Query to Determine Upcoming Renewals (GetOrderByExpirationDate) Query API to Get Certificate Orders (GetCertificateOrders) Query API to Reissue Certificates (ReIssue) ValidateOrderParameters ToggleRenewalNotice Account API Functions GetAccountSnapshot ResellerApplication AddResellerDeposit Query Invoices GetAgreement Code Examples: Certificate Order Entry Parameters Approver FQDN Approver URL Base Options Country CreditAgency/OrganizationCode GlobalSign API for SSL Certificates v4.3.5 Page 2 of 75
3 9.6 Custom Validity Period of the Certificate (by Not Before/Not After date) Date/Time Formatting Extensions KeyLength Licenses OptionName Order Type/Order Kind Product Codes Subject Alternative Names (SANs) Entry Validity Period Status Explanations Order/Certificate Status ModificationEventName Resend Type Success / Error Codes XML Field Definitions GlobalSign API for SSL Certificates v4.3.5 Page 3 of 75
4 1. Outline GlobalSign offers a Simple Object Access Protocol (SOAP) API for its partners and customers to directly order and manage certificates. Through this API, partners can perform functions such as ordering different products, cancelling and fulfilling orders, and querying for order data. The API supports applications for SSL Certificates placed by partners and by customers using the SSL Managed service platform. Partners may place orders for all certificate product types. 2. SSL Product Type Explanations 2.1 AlphaSSL AlphaSSL is a low cost domain validated certificate with separate branding from the rest of GlobalSign s SSL product line. This product can only be purchased in standard or wildcard options, 1-3 year validity periods. No value add options such as SANs are supported with this product. When placing an AlphaSSL order, the applicant must supply a CSR. Certificates requested by supplying a customer generated CSR are returned as standard certificate files. Note: in the API product code specification AlphaSSL is referenced as DV_LOW. 2.2 DomainSSL DomainSSL is a domain validated certificate from GlobalSign. DomainSSL supports both standard and wildcard configurations as well as specific SAN options with 1 3 year validity periods. SAN options include: Free Unified Communications support for owa, autodiscover, and mail Additional sub-domains When placing a DomainSSL order the applicant may supply a CSR, or use the AutoCSR option. AutoCSR is available to direct customers only and is not available on reseller accounts. Certificates requested by supplying a customer generated CSR are returned as standard certificate files. Note: the API product code specification DomainSSL is referenced as DV. 2.3 OrganizationSSL OrganizationSSL is a high assurance organization validated certificate. OrganizationSSL supports both standard and wildcard configurations as well as specific SAN options with 1 3 year validity periods. SAN options include: Free Unified Communications support for owa, autodiscover, and mail. Additional domains Additional sub-domains Public IP Addresses When placing an OrganizationSLL order, the applicant may supply a CSR, or use the AutoCSR option. AutoCSR is available to direct customers only and is not available on reseller accounts. Certificates requested by supplying a customer generated CSR are returned as standard certificate files. Note: the API product code specification OrganizationSSL is referenced as OV. GlobalSign API for SSL Certificates v4.3.5 Page 4 of 75
5 2.4 Extended SSL ExtendedSSL or Extended Validation (EV) SSL is the highest assurance SSL certificate available. EV SSL supports standard SSL configurations with 1 2 years of validity; no wildcard option is available with this product. The following SAN options are available with ExtendedSSL: Free Unified Communications support for owa, autodiscover, and mail Additional domains. Additional sub-domains Note: the API product code specification ExtendedSSL is referenced as EV. 2.5 Summary of key SSL Product Features This is a table with the key features for the suite of SSL products: Function EV OV DV Alpha Base Options Wildcard N Global IP N N N Private N N N N Validity Period in request (years) Up to 2 Up to 3 Up to 3 Up to 3 Maximum cert validity period (months) Extra renewal Month Order Options (OptionName) SAN Option Renewal Extension Option Validity Period Customize Option Order Kind New Renewal Transfer SAN types: Unified Communications FQDN SubDomain GlobalIP Address Wildcard Internal SAN or Reserved IP address AutoCSR (RSA keys only, ECC is not supported) Extensions Extended Key Usage Key Usage TLS Feature Extension CSR Key Types supported RSA ECC P-256 ECC P-384 N N N N N N N N N N N N N N N N [1] [1] N Future Future Future Future Post issuance: - Change SANs (Add/Delete) N/A - Cancel in 7 days - Revoke - Reissue Site Seal N N N N N N GlobalSign API for SSL Certificates v4.3.5 Page 5 of 75
6 [1] Note: AUTOCSR is not available for Partner accounts due to security concerns associated with the partner having access to their customer s private keys. It is available for Retail and Enterprise accounts. 2.6 Anti-Phishing Checks Background All domain validated certificates (DomainSSL and AlphaSSL) are automatically put through the GlobalSign anti-phishing checks. These checks involve a series of automated processes to help identify potential phishing risks. If flagged as high risk the certificate will not be issued until manually reviewed by a GlobalSign vetting agent. If an API based order is flagged for phishing an appropriate alert message is reported and a vetting agent will be assigned to review the order. All other types of orders have the same anit-phishing checks performed during the manual vetting process. 2.7 Web Service Functions Workflow Overview Order processing for SSL Certificates and web identity products is asynchronous. For these types of orders an API client places an order and then later checks the server for the completed order. The functions are broken into several categories SSL Functions: calls to place, modify, or cancel orders Service & Query Functions: calls searching for complete orders (such as getting issued Certificates), decoding CSRs, validating order parameters Account Functions: calls needed to perform account actions, such as checking balance and modified sub-accounts The general approach for ordering is to place orders using an SSL function, then periodically request the list of all orders that have changed status during a specified time interval (for example, the last four hours) using the Service/Query function of GetModifiedOrders. This returns a list of all orders and detailed order information for orders that have changed status in the specified time interval. The status of all returned orders can then be updated locally and used as necessary. An alternative to querying for a set of modified orders within a time period is to specifically request the status of a specific order. In this case the ordering flow consists of the following operations: place an order, and then periodically check the status of the specific order (GetOrderByOrderID). Once the order has been completed, the fulfillment information is returned with the GetOrderByOrderID operation. This approach is less efficient, but might be more appropriate when there is a low volume of certificates being managed. 2.8 SSL Functions Function Getting list of approver addresses Getting list of approver addresses and OrderID for DVOrder (DomainSSL and AlphaSSL only) Order AlphaSSL or DomainSSL Certificate with Approver validation Order AlphaSSL or DomainSSL Certificate with Metatag validation Order AlphaSSL or DomainSSl Certificate with DNS validation Order OrganizationSSL Certificate Order ExtendedSSL Certificate Changing certificate order status API Request GetApproverList GetDVApproverList DVOrder DVOrderWithoutCSR URLVerification & URLVerificationForIssue DVDNS OVOrder OVOrderWithoutCSR EVOrder ModifyOrder GlobalSign API for SSL Certificates v4.3.5 Page 6 of 75
7 Resend Approver s for AlphaSSL & DomainSSL orders Place an order using the cert invite functionality Change the address that the approval request is sent to for domain validated products Change the SubjectAltName in certificate. Resend CertInviteOrder ChangeApprover ChangeSubjectAltName 2.9 Service/Query Functions Function Decoding a CSR Searching order information by Order ID Searching modified orders by modified date (from/to) Getting order list Searching orders by order date (from/to) Check upcoming expirations ReIssue Certificate Turn on/off Renewal notice Checking order parameter validity API DecodeCSR GetOrderByOrderID GetModifiedOrders GetCertificateOrders GetOrderByDateRange GetOrderByExpirationDate ReIssue ToggleRenewalNotice ValidateOrderParameters 2.10 Account Functions Function To view account balance and recent usage Add deposit to a sub reseller account Query outstanding invoices Create a sub-reseller account API AccountSnapshot AddResellerDeposit QueryInvoices ResellerApplication 2.11 Delivery of Issued Certificates by Issued certificates can be delivered directly to the customer specified in the appropriate 4.1 Order functions. In the DVOrder / OVOrder / EVOrder Request specify the end customer and their address in the <ContactInfo> field. Note: To directly the end customer your account must be configured on a specific template group. Contact your Account Manager or Tech Implementation Contact to arrange. GlobalSign API for SSL Certificates v4.3.5 Page 7 of 75
8 2.12 WSDL & API URL s WSDL URL s PROD Feature SSL Functions WSDL Service / Query WSDL Account WSDL Subscriber Agreement WSDL URL TEST SSL Functions WSDL Service / Query WSDL Account WSDL Subscriber Agreement WSDL N/A API URL s: PROD Feature SSL Functions Service / Query Account Subscriber Agreement URL TEST SSL Functions Service / Query Account Subscriber Agreement N/A *Test system accounts are available to API customers upon request GlobalSign API for SSL Certificates v4.3.5 Page 8 of 75
9 3. Ordering DomainSSL & AlphaSSL Certificates DomainSSL and AlphaSSL certificates can be ordered via 3 different validation methods: - DVOrder Approved via - URLVerification Approved via meta-tag posted on the website of the domain being validated - DVDNS Order approved via placing a value in the DNS entry for the domain being validated 3.1 Ordering a DomainSSL or AlphaSSL Certificate Using Validation Optional - Obtain Common Name from the CSR. (1) DecodeCSR Request DecodeCSR Response Obtain the list of approver addresses, OrderID and check phishing DB using Common Name. (2) GetDVApproverList Request GetDVApproverList Response Order DomainSSL certificate using Order ID and selected approver e- mail address. (3) DVOrder Request DVOrder Response Sending approver (Out of API) Approve (Out of API) 1. DecodeCSR: This decodes the CSR and returns the values (optional). 2. GetDVApproverList This returns a list of valid approver addresses which can be specified in the DVorder below. If you use one of the following addresses: admin@, administrator@, hostmaster@, postmaster@, or webmaster@example.com, then this API command is not necessary. If you want to use one of the addresses from the WHOIS, then it s recommended you call this command to verify the addresses are available for use. Getting list of approver s and order ID for DVOrder and check CN against phishing database (when approval is to be used) GlobalSign API for SSL Certificates v4.3.5 Page 9 of 75
10 3. DVorder Request This creates the Order in the system 4. Sending approver (outside the API) 5. Approve (or deny) order (outside the API) 6. GetOrderByOrderID, or similar: Pick up the issued certificate DVOrder Request <DVOrder xmlns=" <Request> <OrderRequestHeader> <AuthToken> <UserName> 30 String <Password> 30 String </AuthToken> </OrderRequestHeader> <OrderRequestParameter> <ProductCode> DV, DV_LOW (<BaseOption>)? wildcard <OrderKind> new,renewal,transfer <Licenses> 1-99 (<Options> (<Option> <OptionName> VPC: ValidityPeriodCustomizeOption SAN: SANOption <OptionValue> true,false </Option>)+ <Options>)? <ValidityPeriod> <Months> 4 (<NotBefore>)? 25 -MM-DDTHH:MM:SS.000Z (<NotAfter>)? 25 -MM-DDTHH:MM:SS.000Z </ValidityPeriod> <CSR> 4000 String (<RenewalTargetOrderID)? 50 String (<TargetCERT>)? 4000 String (<SpecialInstructions>)? 4000 String (<Coupon>)? 50 String (<Campaign>)? 50 String </OrderRequestParameter> (<SubID>)? 50 String <OrderID> 50 String <Approver > 255 String <ContactInfo> <FirstName> 100 String <LastName> 100 String <Phone> 30 String < > 255 String </ContactInfo> <SecondContactInfo> <FirstName> 100 String <LastName> 100 String <Phone> 30 String < > 255 String </SecondContactInfo> (<SANEntries> (<SANEntry> <SANOptionType> 1:UC cert option 2:Subdomain option <SubjectAltName> 4000 String (<ModifyOperation>)? <!- N/A --> </SANEntry>)+ </SANEntries>)? </Request> </DVOrder> GlobalSign API for SSL Certificates v4.3.5 Page 10 of 75
11 DVOrder Response <DVOrder xmlns=" <Response> <OrderResponseHeader> <SuccessCode> 2 (<Errors> (<Error> <ErrorCode> 5 (<ErrorField>)? 1000 String <ErrorMessage> 1000 String </Error>)+ </Errors>)? <Timestamp> -MM-DDTHH:MM:SS.000Z </OrderResponseHeader> <OrderID>? 50 String <!- Error empty message --> </Response> </DVOrder> If the response contains a success code of 0, GlobalSign will send out an to the Approval contact. After the contact has given permission for the certificate to be issued, the certificate will be issued and sent via to the reseller for forwarding to the end user. 3.2 Ordering DomainSSL or AlphaSSL Using HTTP (URL) Verification Using the following methods will allow you to order and approve DomainSSL and AlphaSSL Certificates by using a metatag for verification instead of the approver method. After the order is placed, the API response will contain a metatag which needs to be placed in the applicable location on the domain that is being secured. Partner API Server Outside of API: Partner / End user installs MetaTag in the <head> of the index of the domain being secured 1 2 Creates new Order with URLVerification Return Metatag Requests that MetaTags are checked with the URLVerificationForIssue Request 3 Upon Success Returns Certificate 4 Outside of API: GlobalSign crawler verifies metatag URLVerification Order Request <URLVerification xmlns=" <Request> GlobalSign API for SSL Certificates v4.3.5 Page 11 of 75
12 <OrderRequestHeader> <AuthToken> <UserName> 30 String <Password> 30 String </AuthToken> </OrderRequestHeader> <OrderRequestParameter> <ProductCode> DV_HIGH_URL, DV_LOW_URL (<BaseOption>)? wildcard <OrderKind> new,renewal,transfer <Licenses> 1-99 (<Options> (<Option> <OptionName> VPC: ValidityPeriodCustomizeOption SAN: SANOption <OptionValue> true,false </Option>)+ <Options>)? <ValidityPeriod> <Months> 4 (<NotBefore>)? 25 -MM-DDTHH:MM:SS.000Z (<NotAfter>)? 25 -MM-DDTHH:MM:SS.000Z </ValidityPeriod> <CSR> 4000 String (<RenewalTargetOrderID)? 50 String (<TargetCERT>)? 4000 String (<SpecialInstructions>)? 4000 String (<Coupon>)? 50 String (<Campaign>)? 50 String </OrderRequestParameter> (<SubID>)? 50 String <OrderID> 50 String <ContactInfo> <FirstName> 100 String <LastName> 100 String <Phone> 30 String < > 255 String </ContactInfo> <SecondContactInfo> <FirstName> 100 String <LastName> 100 String < > 255 String </SecondContactInfo> (<SANEntries> (<SANEntry> <SANOptionType> 1:UC cert option 2:Subdomain option <SubjectAltName> 4000 String (<ModifyOperation>)? <!- N/A --> </SANEntry>)+ </SANEntries>)? </Request> </URLVerification> URLVerification Order Response The response contains both the metatag and a list of allowable domains on which we can verify the FQDN with. The metatag needs to be placed in the applicable location. <URLVerificationResponse xmlns=" <Response> <OrderResponseHeader> <SuccessCode> 2 GlobalSign API for SSL Certificates v4.3.5 Page 12 of 75
13 (<Errors> (<Error> <ErrorCode> 5 (<ErrorField>)? 1000 String <ErrorMessage> 1000 String </Error>)+ </Errors>)? <Timestamp> -MM-DDTHH:MM:SS.000Z </OrderResponseHeader> <OrderID>? 50 String <!- Error empty message --> <Metatag>? 50 String <!- Error empty message --> <VerificationURLList> <VerificationURL> 1000 String <VerificationURLList> </Response> </ URLVerificationResponse> URLVerification for Issue Request After placing the Random Value (meta-tag) on one of the allowable domains (see section 9.2), the following request is used to validate the domain. It's important to specify one of the valid URLs in the <ApproverURL> or domain validation will fail. See section 9.2 for the definition of ApproverURL. <ns2: URLVerificationForIssue xmlns:ns2=" <Request> <OrderRequestHeader> <AuthToken> <UserName> 30 String <Password> 30 String </AuthToken> </OrderRequestHeader> <OrderID> <ApproverURL> 64 String </Request> </URLVerificationForIssue > URL Verification for Issue Response <UrlVerificationForIssue> <Response> <OrderResponseHeader> <SuccessCode> 2 (<Errors> (<Error> <ErrorCode> 5 (<ErrorField>)? 1000 String <ErrorMessage> 1000 String </Error>)+ </Errors>)? <Timestamp> -MM-DDTHH:MM:SS.000Z </OrderResponseHeader> (<UrlVerificationForIssue> (<CertificateInfo> <CertificateStatus> 5 <StartDate> -MM-DDTHH:MM:SS.000Z <EndDate> <CommonName> 64 String <SerialNumber> 64 String <SubjectName> 3000 String (<DNSNames>)? 300 String </CertficateInfo>)? (<Fulfillment> (<CACertificates> (<CACertificate> <CACertType> -MM-DDTHH:MM:SS.000Z Root, Inter GlobalSign API for SSL Certificates v4.3.5 Page 13 of 75
14 <CACert> 4000 String </CACertificate>)+ </CACertificates>)? (<ServerCertificate> <X509Cert> 4000 String <PKCS7Cert> 4000 String </ServerCertificate>)? </Fulfillment>)? </UrlVerificationForIssue>)? </Response> </UrlVerificationForIssue> 3.3 Ordering DomainSSL or AlphaSSL Using DNS Verification Using the following methods will allow you to order and approve DomainSSL and AlphaSSL Certificates by using a DNS txt record for verification instead of the approver method. After the order is placed, the API response will contain a DNS txt record which needs to be placed in the index of the domain that is being secured. The DNS TXT record will resemble: globalsign-domain-verification=lhvopmzmfgzcazkqdnxxqkgylnwsj_ioc1cqq-nts Please note that the DNS TXT record check is case sensitive. Some DNS providers may automatically adjust the case of the TXT record. This scenario will cause a failure of the validation. Partner API Server Outside of API: Partner / End user creates DNS txt record for domain being secured 1 2 Creates new Order with DVDNSOrder Return TXT record value Requests that DNS txt record is checked with the DVDNSVerificationForIssue Request 3 Upon Success Returns Certificate 4 Outside of API: GlobalSign crawler verifies DNS txt record DVDNSOrder Request <DVDNSOrder xmlns=" <Request> <OrderRequestHeader> <AuthToken> <UserName> 30 String <Password> 30 String </AuthToken> </OrderRequestHeader> <OrderRequestParameter> <ProductCode> DV_HIGH_DNS, DV_LOW_DNS GlobalSign API for SSL Certificates v4.3.5 Page 14 of 75
15 (<BaseOption>)? wildcard <OrderKind> new,renewal,transfer <Licenses> 1-99 (<Options> (<Option> <OptionName> VPC: ValidityPeriodCustomizeOption SAN: SANOption <OptionValue> true,false </Option>)+ <Options>)? <ValidityPeriod> <Months> 4 (<NotBefore>)? 25 -MM-DDTHH:MM:SS.000Z (<NotAfter>)? 25 -MM-DDTHH:MM:SS.000Z </ValidityPeriod> <CSR> 4000 String (<RenewalTargetOrderID)? 50 String (<TargetCERT>)? 4000 String (<SpecialInstructions>)? 4000 String (<Coupon>)? 50 String (<Campaign>)? 50 String </OrderRequestParameter> (<SubID>)? 50 String <OrderID> 50 String <ContactInfo> <FirstName> 100 String <LastName> 100 String <Phone> 30 String < > 255 String </ContactInfo> <SecondContactInfo> <FirstName> 100 String <LastName> 100 String < > 255 String </SecondContactInfo> (<SANEntries> (<SANEntry> <SANOptionType> 1:UC cert option 2:Subdomain option <SubjectAltName> 4000 String (<ModifyOperation>)? <!- N/A --> </SANEntry>)+ </SANEntries>)? </Request> </DVDNSOrder> DVDNS Order Response The response contains both the DNS TXT and a list of allowable domains on which we can verify the requested FQDN. <DVDNSOrderResponse xmlns=" <Response> <OrderResponseHeader> <SuccessCode> 2 (<Errors> (<Error> <ErrorCode> 5 (<ErrorField>)? 1000 String <ErrorMessage> 1000 String </Error>)+ </Errors>)? <Timestamp> -MM-DDTHH:MM:SS.000Z </OrderResponseHeader> GlobalSign API for SSL Certificates v4.3.5 Page 15 of 75
16 <OrderID>? 50 String <!- Error empty message --> <DNSTXT>? 50 String <!- Error empty message --> < VerificationFQDNList> < VerificationFQDN > 1000 String </VerificationFQDNList > </Response> </ DVDNSOrderResponse> DVDNS Order for Issue Request After placing the DNS TXT record on one of the allowable domains, the following request is used to have our validator verify the DNS TXT record. See section 9.1 <ns2: DVDNSVerificationForIssue xmlns:ns2=" <Request> <OrderRequestHeader> <AuthToken> <UserName> 30 String <Password> 30 String </AuthToken> </OrderRequestHeader> <OrderID> <ApproverFQDN> 64 String </Request> </DVDNSVerificationForIssue> DVDNS Order for Issue Response <DVDNSVerificationForIssueResponse> <Response> <OrderResponseHeader> <SuccessCode> 2 (<Errors> (<Error> <ErrorCode> 5 (<ErrorField>)? 1000 String <ErrorMessage> 1000 String </Error>)+ </Errors>)? <Timestamp> -MM-DDTHH:MM:SS.000Z </OrderResponseHeader> (<DVDNSVerificationForIssue> (<CertificateInfo> <CertificateStatus> 5 <StartDate> -MM-DDTHH:MM:SS.000Z <EndDate> -MM-DDTHH:MM:SS.000Z <CommonName> 64 String <SerialNumber> 64 String <SubjectName> 3000 String (<DNSNames>)? 300 String </CertficateInfo>)? (<Fulfillment> (<CACertificates> (<CACertificate> <CACertType> Root, Inter <CACert> 4000 String </CACertificate>)+ </CACertificates>)? (<ServerCertificate> <X509Cert> 4000 String <PKCS7Cert> 4000 String </ServerCertificate>)? </Fulfillment>)? </DVDNSVerificationForIssue>)? </Response> </DVDNSVerificationForIssueResponse> GlobalSign API for SSL Certificates v4.3.5 Page 16 of 75
17 4. Ordering OrganizationSSL Certificates Obtaining Common Name from the CSR (1) DecodeCSR Request DecodeCSR Response Order OrganizationSSL certificate (2) OVOrder Request OVOrder Response 1. Parsing CSR 2. Submit order 4.1 OrganizationSSL Certificate Request Extracting Common Name from the CSR. DecodeCSR Request <DecodeCSR> <Request > <QueryRequestHeader> <AuthToken> <UserName> 30 String <Password> 30 String </AuthToken> </QueryRequestHeader> <CSR> 50 String <ProductType> OV </Request > </DecodeCSR> DecodeCSR Response <DecodeCSR> <Response> <OrderResponseHeader> <SuccessCode> 2 GlobalSign API for SSL Certificates v4.3.5 Page 17 of 75
18 (<Errors> (<Error> <ErrorCode> 5 (<ErrorField>)? 1000 String <ErrorMessage> 1000 String </Error>)+ </Errors>)? <Timestamp> -MM-DDTHH:MM:SS.000Z </OrderResponseHeader> <CSRData> (<CommonName>)? 255 String (<Organization>)? 255 String (<OrganizationUnit>)? 255 String (<Locality>)? 255 String (<State>)? 255 String (<Country>)? 30 String (< Address>)? 255 String (<KeyLength>)? 30 String </CSRData> <CertificatePreview> (<CommonName>)? 255 String (<Organization>)? 255 String (<OrganizationUnit>)? 255 String (<Locality>)? 255 String (<State>)? 255 String (<Country>)? 30 String (< Address>)? 255 String (<KeyLength>)? 30 String </CertificatePreview> </Response> </DecodeCSR> 4.2 Ordering the OrganizationSSL Certificate OVOrder Request Note: the Extensions data element is new as of August 2016 <OVOrder xmlns=" <Request> <OrderRequestHeader> <AuthToken> <UserName> 30 String <Password> 30 String </AuthToken> </OrderRequestHeader> <OrderRequestParameter> <ProductCode> OV (<BaseOption>)? wildcard, GIP <OrderKind> new,renewal,transfer <Licenses> 1-99 (<Options> (<Option> <OptionName> VPC: ValidityPeriodCustomizeOption SAN: SANOption <OptionValue> true,false </Option>)+ <Options>)? <ValidityPeriod> <Months> 4 (<NotBefore>)? 25 -MM-DDTHH:MM:SS.000Z (<NotAfter>)? 25 -MM-DDTHH:MM:SS.000Z </ValidityPeriod> <CSR> 4000 String (<RenewalTargetOrderID)? 50 String (<TargetCERT>)? 4000 String GlobalSign API for SSL Certificates v4.3.5 Page 18 of 75
19 (<SpecialInstructions>)? 4000 String (<Coupon>)? 50 String (<Campaign>)? 50 String </OrderRequestParameter> (<SubID>)? 50 String <OrganizationInfo> <OrganizationName> 255 String (<CreditAgency>)? 1:DUNS, 2:TDB (<OrganizationCode>)? 50 String <OrganizationAddress> <AddressLine1> 100 String (<AddressLine2>)? 100 String (<AddressLine3>)? 100 String <City> 200 String <Region> 255 String <PostalCode> 20 String <Country> 30 String <Phone> 30 String (<Fax>)? 30 String </OrganizationAddress> </OrganizationInfo> <ContactInfo> <FirstName> 100 String <LastName> 100 String <Phone> 30 String < > 255 String </ContactInfo> (<SANEntries> (<SANEntry> <SANOptionType> 1:UC cert option 2:Subdomain SAN option 3:GIP SAN option 4:Internal SAN option 7:FQDN SAN option <SubjectAltName> 4000 String (<ModifyOperation>)? ADDITION, UNCHANGED, DELETE </SANEntry>)+ </SANEntries>)? (<Extensions> (<Extension> <Name> See section Error! Reference source not found. <Value> </Extension>)+ </Extensions>)? </Request> </OVOrder> OVOrder Response <OVOrder xmlns=" <Response> <OrderResponseHeader> <SuccessCode> 2 (<Errors> (<Error> <ErrorCode> 5 (<ErrorField>)? 1000 String <ErrorMessage> 1000 String </Error>)+ </Errors>)? <Timestamp> -MM-DDTHH:MM:SS.000Z </OrderResponseHeader> <OrderID>? 50 String <!- Error empty message --> </Response> </OVOrder> GlobalSign API for SSL Certificates v4.3.5 Page 19 of 75
20 OVOrderWithoutCSR Request Depending on the GCC account type, customers may request GlobalSign to generate the keys for the certifciates instead of supplying a CSR. Partner accounts do not have this enabled due to security concerns ith the partner having access to the end users private keys; however this is generally permitted for Enterprise and Retail accounts. Note: The Extension field is a new field as of August 2016 <OVOrder xmlns=" <Request> <OrderRequestHeader> <AuthToken> <UserName> 30 String <Password> 30 String </AuthToken> </OrderRequestHeader> <OrderRequestWithoutCSR> <ProductCode> OV (<BaseOption>)? wildcard, GIP <OrderKind> new,renewal,transfer <Licenses> 1-99 (<Options> (<Option> <OptionName> VPC: ValidityPeriodCustomizeOption SAN: SANOption <OptionValue> true,false </Option>)+ <Options>)? <ValidityPeriod> <Months> 4 (<NotBefore>)? 25 -MM-DDTHH:MM:SS.000Z (<NotAfter>)? 25 -MM-DDTHH:MM:SS.000Z </ValidityPeriod> <PIN> <KeyLength> (<RenewalTargetOrderID)? 50 String (<TargetCERT>)? 4000 String (<DNSNames>)? (<SpecialInstructions>)? 4000 String (<Coupon>)? 50 String (<Campaign>)? 50 String </OrderRequestWithoutCSR> (<SubID>)? 50 String <OrganizationInfo> <OrganizationName> 255 String (<CreditAgency>)? 1:DUNS, 2:TDB (<OrganizationCode>)? 50 String <OrganizationAddress> <AddressLine1> 100 String (<AddressLine2>)? 100 String (<AddressLine3>)? 100 String <City> 200 String <Region> 255 String <PostalCode> 20 String <Country> 30 String <Phone> 30 String (<Fax>)? 30 String </OrganizationAddress> </OrganizationInfo> <ContactInfo> <FirstName> 100 String <LastName> 100 String <Phone> 30 String < > 255 String </ContactInfo> (<SANEntries> (<SANEntry> GlobalSign API for SSL Certificates v4.3.5 Page 20 of 75
21 <SANOptionType> 1:UC cert option 2:Subdomain SAN option 3:GIP SAN option 4:Internal SAN option 7:FQDN SAN option <SubjectAltName> 4000 String (<ModifyOperation>)? ADDITION, UNCHANGED, DELETE </SANEntry>)+ </SANEntries>)? (<Extensions> (<Extension> <Name> See Section Error! Reference source not found. <Value> </Extension>)+ </Extensions>)? </Request> </OVOrder> OVOrder Response <OVOrder xmlns=" <Response> <OrderResponseHeader> <SuccessCode> 2 (<Errors> (<Error> <ErrorCode> 5 (<ErrorField>)? 1000 String <ErrorMessage> 1000 String </Error>)+ </Errors>)? <Timestamp> -MM-DDTHH:MM:SS.000Z </OrderResponseHeader> <OrderID>? 50 String <!- Error empty message --> </Response> </OVOrder> GlobalSign API for SSL Certificates v4.3.5 Page 21 of 75
22 5. Ordering ExtendedSSL Certificates (1) DecodeCSR Request Obtaining Common Name from the CSR DecodeCSR Response (2) EVOrder Request Order ExtendedSSL certificate EVOrder Response 1. Parsing CSR and Phishing check 2. Request an order 5.1 Decode CSR Extracting Common Name from the CSR. DecodeCSR Request <DecodeCSR> <Request > <QueryRequestHeader> <AuthToken> <UserName> 30 String <Password> 30 String </AuthToken> </QueryRequestHeader> <CSR> 50 String <ProductType> EV </Request > </DecodeCSR> DecodeCSR Response <DecodeCSR> <Response> <OrderResponseHeader> <SuccessCode> 2 (<Errors> (<Error> <ErrorCode> 5 (<ErrorField>)? 1000 String GlobalSign API for SSL Certificates v4.3.5 Page 22 of 75
23 <ErrorMessage> 1000 String </Error>)+ </Errors>)? <Timestamp> -MM-DDTHH:MM:SS.000Z </OrderResponseHeader> <CSRData> (<CommonName>)? 255 String (<Organization>)? 255 String (<OrganizationUnit>)? 255 String (<Locality>)? 255 String (<State>)? 255 String (<Country>)? 30 String (< Address>)? 255 String (<KeyLength>)? 30 String </CSRData> <CertificatePreview> (<CommonName>)? 255 String (<Organization>)? 255 String (<OrganizationUnit>)? 255 String (<Locality>)? 255 String (<State>)? 255 String (<Country>)? 30 String (< Address>)? 255 String (<KeyLength>)? 30 String </CertificatePreview> </Response> </DecodeCSR> 5.2 Ordering the ExtendedSSL Certificate EVOrder Request <EVOrder xmlns=" <Request> <OrderRequestHeader> <AuthToken> <UserName> 30 String <Password> 30 String </AuthToken> </OrderRequestHeader> <OrderRequestParameter> <ProductCode> EV (<BaseOption>)? wildcard,globalip <OrderKind> new,renewal,transfer <Licenses> 1-99 (<Options> (<Option> <OptionName> VPC: ValidityPeriodCustomizeOption SAN: SANOption <OptionValue> true,false </Option>)+ <Options>)? <ValidityPeriod> <Months> 4 (<NotBefore>)? 25 -MM-DDTHH:MM:SS.000Z (<NotAfter>)? 25 -MM-DDTHH:MM:SS.000Z </ValidityPeriod> <CSR> 4000 String (<RenewalTargetOrderID)? 50 String (<TargetCERT>)? 4000 String (<SpecialInstructions>)? 4000 String (<Coupon>)? 50 String (<Campaign>)? 50 String </OrderRequestParameter> (<SubID>)? 50 String GlobalSign API for SSL Certificates v4.3.5 Page 23 of 75
24 <OrganizationInfoEV> (<CreditAgency>)? 1:DUNS, 2:TDB (<OrganizationCode>)? 50 String (<BusinessAssumedName>)? 255 String <BusinessCategoryCode> PO:Private Organization GE:Government Entity BE:BusinessEntity <OrganizationAddress> <AddressLine1> 100 String (<AddressLine2>)? 100 String (<AddressLine3>)? 100 String <City> 200 String <Region> 255 String <PostalCode> 20 String <Country> 30 String ISO <Phone> 30 String (<Fax>)? 30 String </OrganizationAddress> </OrganizationInfoEV> <RequestorInfo> <FirstName> 100 String <LastName> 100 String (<Function>)? 255 String <OrganizationName> 255 String (<OrganizationUnit>)? 100 String <Phone> 30 String < > 255 String </RequestorInfo> <ApproverInfo> <FirstName> 100 String <LastName> 100 String (<Function>)? 255 String <OrganizationName> 255 String (<OrganizationUnit>)? 100 String <Phone> 30 String < > 255 String </ApproverInfo> <AuthorizedSignerInfo> <OrganizationName> 255 String <FirstName> 100 String <LastName> 100 String (<Function>)? 255 String <Phone> 30 String < > 255 String </AuthorizedSignerInfo> <JurisdictionInfo> <JurisdictionCountry> 30 String ISO <StateOrProvince> 255 String <Locality> 200 String <IncorporatingAgencyRegistrationNumber> 100 String </JurisdictionInfo> <ContactInfo> <FirstName> 100 String <LastName> 100 String <Phone> 30 String < > 255 String </ContactInfo> (<SANEntries> (<SANEntry> <SANOptionType> 1:UC cert option 2:Subdomain SAN option 3:GIP SAN option 4:Internal SAN option 7:FQDN SAN option <SubjectAltName> 4000 String (<ModifyOperation>)? <!- N/A --> </SANEntry>)+ </SANEntries>)? </Request> </EVOrder> GlobalSign API for SSL Certificates v4.3.5 Page 24 of 75
25 EVOrder Response <EVOrder xmlns=" <Response> <OrderResponseHeader> <SuccessCode> 2 (<Errors> (<Error> <ErrorCode> 5 (<ErrorField>)? 1000 String <ErrorMessage> 1000 String </Error>)+ </Errors>)? <Timestamp> 25 -MM-DDTHH:MM:SS.000Z </OrderResponseHeader> <OrderID>? 50 String <!- Error empty message --> </Response> </EVOrder> GlobalSign API for SSL Certificates v4.3.5 Page 25 of 75
26 6. General SSL Functions 6.1 Receive List of Approver Addresses and perform phishing DB check The details from the DecodeCSR Response can now be used to continue with the request. The next step involves receiving the list of approver addresses and an OrderID to complete the order of the certificate. This is only required when the order approval method is set to validation. GetDVApproverList Request <GetDVApproverList xmlns=" <Request> <QueryRequestHeader> <AuthToken> <UserName> 30 <Password> 30 </AuthToken> </QueryRequestHeader> <FQDN> 255 String* </Request> </GetDVApproverList> *FQDN is the CommonName from previous response GetDVApproverList Response <GetDVApproverList xmlns=" <Response> <QueryResponseHeader> <SuccessCode> 2 (<Errors> (<Error> <ErrorCode> 5 <ErrorMessage> 1000 String </Error>)+ </Errors>)? <Timestamp> -MM-DDTHH:MM:SS.000Z <ReturnCount> 5 </QueryResponseHeader> (<Approvers> (<Approver> <ApproverType> 10 String Domain or Generic <Approver > 255 </Approver>)+ </Approvers>)? <OrderID>? 50 String </Response> </GetDVApproverList> This response will contain a success code, a list of approver contact details for the end user to choose from, and an OrderID for continuing with the order. If the success code is -1, the request procedure will stop and the error code will have to be consulted. GlobalSign API for SSL Certificates v4.3.5 Page 26 of 75
27 6.2 Changing the SubjectAltName in Certificate DomainSSL Set the Common Name and get approver list and OrderId (1) GetDVApproverList Request GetDVApproverList Response Order ChangeSubjectAltName using OrderID and selected approver address (2) ChangeSubjectAltName Request ChangeSubjectAltName Response 1. Getting list of approver and OrderID for ChangeSubjectAltName(with Phishing check) 2. Request an SAN Order 3. Sending approver 4. Approve or deny order OrganizationalSSL, Extended SSL Set SubjectAltName information and order certificate (1) ChangeSubjectAltName Request ChangeSubjectAltName Response GlobalSign API for SSL Certificates v4.3.5 Page 27 of 75
28 6.3 Change SubjectAltName Use the ChangeSubjectAltName API to change (add or delete) SubjectAltName(s) of issued certificate. <SANEntries> parameters should be set as how SubjectAltName(s) would be after this change. GetDVApproverList API should be requested beforehand for DomainSSL. New certificate with requested SubjectAltName will be issued after the vetting is completed and be able to get using Query APIs. ChangeSubjectAltName Request <ChangeSubjectAltName xmlns=" "> <Request> <OrderRequestHeader> <AuthToken> <UserName> <Password> </AuthToken> </OrderRequestHeader> (<OrderID>)? 50 String <TargetOrderID> 50 String (<Approver >)? (<SANEntries> (<SANEntryArray> <SANOptionType> 1:UC cert option 2:Subdomain SAN option 3:GIP SAN option 4:Internal SAN option 7:FQDN SAN option <SubjectAltName> 64 String </SANEntryArray>)+ </SANEntries>)? <PIN>? String </Request> </ChangeSubjectAltName> ChangeSubjectAltName Response <ChangeSubjectAltName xmlns=" <Response> <OrderResponseHeader> <SuccessCode> (<Errors> (<Error> <ErrorCode> 5 (<ErrorField>)? 1000 String <ErrorMessage> 1000 String </Error>)+ </Errors>)? <Timestamp> -MM-DDTHH:MM:SS.000Z </OrderResponseHeader> <OrderID>? 50 String (<TargetOrderID>)? 50 String </Response> </ChangeSubjectAltName> 6.4 Create Cert-Invites (CertInviteOrder) Request which allows the ordering and creation of Cert-Invites. CertInviteOrder Request <CertInviteOrder > <Request> GlobalSign API for SSL Certificates v4.3.5 Page 28 of 75
29 <OrderRequestHeader> <AuthToken> <UserName> 30 String <Password> 30 String </AuthToken> </OrderRequestHeader> <OrderRequestParameter> <ProductCode> DV_LOW, DV,OV,EV (<BaseOption>)? Wildcard <OrderKind> new,renewal,transfer (<Options> (<Option> <OptionName> EXP: ExpressOption INS: InsuranceOption GSS: GSSupportOption REX: RenewalExtentionOption VPC: ValidityPeriodCustomizeOption SAN: SANOption true,false <OptionValue> </Option>)+ <Options>)? <ValidityPeriod> <Months> 4 (<NotBefore>)? 25 -MM-DDTHH:MM:SS.000Z (<NotAfter>)? 25 -MM-DDTHH:MM:SS.000Z </ValidityPeriod> (<RenewalTargetOrderID)? 50 String (<Coupon>)? 50 String (<Campaign>)? 50 String </OrderRequestParameter> (<SANEntries> (<SANEntry> <SANOptionType> 1:UC cert option 2:Subdomain SAN option 3:GIP SAN option 4:Internal SAN option 7:FQDN SAN option </SANEntry>)+ </SANEntries>)? <CertInviteExpirationDate> 25 -MM- DDTHH:MM:SS.000Z <RecipientDeliveryOption> true,false <CertInviteRecipient > 255 String </Request> </ CertInviteOrder > CertInviteOrder Response <CertInviteOrder> <Response> <OrderResponseHeader> <SuccessCode> 2 (<Errors> (<Error> <ErrorCode> 5 (<ErrorField>)? 1000 String <ErrorMessage> 1000 String </Error>)+ </Errors>)? <Timestamp> -MM-DDTHH:MM:SS.000Z </OrderResponseHeader> <PIN> 255 String </Response> </CertInviteOrder> GlobalSign API for SSL Certificates v4.3.5 Page 29 of 75
30 6.5 Change Approver (ChangeApprover ) A request which allows the API user to change the approver for the order. When request is submitted a new approval request will be sent to the approver provided. The user may optionally use a get approver list request before submitting the change approver request. ChangeApprover Request <ChangeApprover > <Request> <OrderRequestHeader> <AuthToken> <UserName> 30 String <Password> 30 String </AuthToken> </OrderRequestHeader> <OrderID> 50 String <Approver > 255 String <FQDN> 255 String </Request> </ChangeApprover > ChangeApprover Response <ChangeApprover > <Response> <OrderResponseHeader> <SuccessCode> 2 (<Errors> (<Error> <ErrorCode> 5 (<ErrorField>)? 1000 String <ErrorMessage> 1000 String </Error>)+ </Errors>)? <Timestamp> -MM-DDTHH:MM:SS.000Z </OrderResponseHeader> <OrderID>? 50 String </Response> </ChangeApprover > 6.6 Re-Send Approver (Resend ) If the user did not receive or lost the Approver message you can use the Resend API to resend this . Resend Request <Resend xmlns=" <Request> <OrderRequestHeader> <AuthToken> <UserName> 30 <Password> 30 </AuthToken> </OrderRequestHeader> <OrderID> 50 String <Resend Type> 20 String APPROVER </Request> </Resend > GlobalSign API for SSL Certificates v4.3.5 Page 30 of 75
31 Resend Response <Resend xmlns=" <Response> <OrderResponseHeader> <SuccessCode> 2 (<Errors> (<Error> <ErrorCode> 5 (<ErrorField>)? 1000 String <ErrorMessage> 1000 String </Error>)+ </Errors>)? <Timestamp> -MM-DDTHH:MM:SS.000Z </OrderResponseHeader> <OrderID>? 50 String </Response> </Resend > 6.7 Modify Existing Order (ModifyOrder) Using the ModifyOrder API you can Approve, Cancel or Revoke a Certificate or Certificate Request by using the OrderID of the Order. It s not currently possible to change the validation method of the order ( , HTTP, DNS), so the original order should be cancelled and a new order created with the updated validation method. ModifyOrder Request <ModifyOrder xmlns=" <Request > <OrderRequestHeader> <AuthToken> <UserName> <Password> </AuthToken> </OrderRequestHeader> <OrderID> 50 String <ModifyOrderOperation> APPROVE,CANCEL,REVOKE </Request > </ModifyOrder> ModifyOrder Response <ModifyOrder xmlns=" <Response> <OrderResponseHeader> <SuccessCode> 2 (<Errors> (<Error> <ErrorCode> 5 (<ErrorField>)? 1000 String <ErrorMessage> 1000 String </Error>)+ </Errors>)? <Timestamp> -MM-DDTHH:MM:SS.000Z </OrderResponseHeader> <OrderID>? 50 String </Response> </ModifyOrder> GlobalSign API for SSL Certificates v4.3.5 Page 31 of 75
32 7. Service & Query API Calls 7.1 Decode CSR DecodeCSR Request <DecodeCSR> <Request > <QueryRequestHeader> <AuthToken> <UserName> 30 String <Password> 30 String </AuthToken> </QueryRequestHeader> <CSR> 50 String <ProductType> DV_LOW, DV </Request > </DecodeCSR> DecodeCSR Response <DecodeCSR> <Response> <OrderResponseHeader> <SuccessCode> 2 (<Errors> (<Error> <ErrorCode> 5 (<ErrorField>)? 1000 String <ErrorMessage> 1000 String </Error>)+ </Errors>)? <Timestamp> -MM-DDTHH:MM:SS.000Z </OrderResponseHeader> <CSRData> (<CommonName>)? 255 String (<Organization>)? 255 String (<OrganizationUnit>)? 255 String (<Locality>)? 255 String (<State>)? 255 String (<Country>)? 30 String (< Address>)? 255 String (<KeyLength>)? 30 String </CSRData> <CertificatePreview> (<CommonName>)? 255 String (<Organization>)? 255 String (<OrganizationUnit>)? 255 String (<Locality>)? 255 String (<State>)? 255 String (<Country>)? 30 String (< Address>)? 255 String (<KeyLength>)? 30 String </CertificatePreview> </Response> </DecodeCSR> GlobalSign API for SSL Certificates v4.3.5 Page 32 of 75
33 7.2 Get Issued Certificate Single Certificate (GetOrderByOrderID) GetOrderByOrderID Request <GetOrderByOrderID xmlns=" <Request> <QueryRequestHeader> <AuthToken> <UserName> 30 String <Password> 30 String </AuthToken> </QueryRequestHeader> <OrderID> 50 String (<OrderQueryOption> (<OrderStatus>)? <!- N/A --> (<ReturnOrderOption>)? 5 String true, false (<ReturnCertificateInfo>)? 5 String true, false (<ReturnFulfillment>)? 5 String true, false (<ReturnCACerts>)? 5 String ReturnFulfillment true </OrderQueryOption>)? </Request> </GetOrderByOrderID> GetOrderByOrderID Response GetOrderByOrderID xmlns=" <Response> <QueryResponseHeader> <SuccessCode> 2 (<Errors> (<Error> <ErrorCode> 5 <ErrorMessage> 1000 String </Error>)+ </Errors>)? <Timestamp> 25 -MM-DDTHH:MM:SS.000Z <ReturnCount> 5 </QueryResponseHeader> <OrderID>? 50 String (<Pkcs12File>)? 4000 String (<OrderDetail> <OrderInfo> <OrderID> 50 String <ProductCode> 20 String (<BaseOption>)? 20 String <OrderKind> 10 String <Licenses> 3 (<ExpressOption>)? 5 String (<ValidityPeriodCustomizeOption>)? 5 String (<InsuranceOption>)? 5 String (<GSSupportOption>)? 5 String (<RenewalExtentionOption>)? 5 String <DomainName> 255 String <OrderDate> 25 -MM-DDTHH:MM:SS.000Z (<OrderCompleteDate>)? 25 -MM-DDTHH:MM:SS.000Z (<OrderCanceledDate>)? 25 -MM-DDTHH:MM:SS.000Z (<OrderDeactivatedDate>)? 25 -MM- DDTHH:MM:SS.000Z <OrderStatus> 5 1: INITIAL 2: Waiting for phishing check 3: Cancelled - Not Issued 4: Issue completed 5: Cancelled - Issued 6: Waiting for revocation 7: Revoked <Price> 10 <Currency> 10 String <ValidityPeriod> GlobalSign API for SSL Certificates v4.3.5 Page 33 of 75
34 DDTHH:MM:SS.000Z <Months> 4 (<NotBefore>)? 25 -MM-DDTHH:MM:SS.000Z (<NotAfter>)? 25 -MM-DDTHH:MM:SS.000Z </ValidityPeriod> (<SpecialInstructions>)? 4000 String </OrderInfo> <OrderSubInfo> <CSRSkipOrderFlag> 5 String true,false <DNSOrderFlag> 5 String true,false <TrustedOrderFlag> 5 String true,false (<P12DeleteStatus>)? 5 (<P12DeleteDate>)? 25 -MM-DDTHH:MM:SS.000Z (<VerificationUrl>)? 300 String <SubId> 50 String </OrderSubInfo> (<OrderOption> <ApproverNotifiedDate>? 25 -MM- <ApproverConfirmDate>? 25 -MM-DDTHH:MM:SS.000Z <Approver Address>? 255 String <OrganizationInfo> <OrganizationName> 255 String (<CreditAgency>)? 50 String (<OrganizationCode>)? 50 String (<BusinessAssumedName>)? 255 String (<BusinessCategoryCode>)? 20 String <OrganizationAddress> <AddressLine1> 100 String (<AddressLine2>)? 100 String (<AddressLine3>)? 100 String <City> 200 String <Region> 255 String <PostalCode> 20 String <Country> 30 String <Phone> 30 String (<Fax>)? 30 String </OrganizationAddress> </OrganizationInfo> (<RequestorInfo> <FirstName> 100 String <LastName> 100 String <Function> 255 String <OrganizationName> 255 String <OrganizationUnit> 100 String <Phone> 30 String < > 255 String </RequestorInfo>)? (<ApproverInfo> <FirstName> 100 String <LastName> 100 String <Function> 255 String <OrganizationName> 255 String (<OrganizationUnit>)? 100 String <Phone> 30 String < > 255 String </ApproverInfo>)? (<AuthorizedSignerInfo> <FirstName> 100 String <LastName> 100 String <Function> 255 String <Phone> 30 String < > 255 String </AuthorizedSignerInfo>)? (<JurisdictionInfo> < JurisdictionCountry> 30 String <StateOrProvince> 255 String <Locality> 200 String <IncorporatingAgencyRegistrationNumber> 100 String </JurisdictionInfo>)? (<ContactInfo> <FirstName> 100 String GlobalSign API for SSL Certificates v4.3.5 Page 34 of 75
35 <LastName> 100 String <Phone> 30 String < > 255 String </ContactInfo>)? </OrderOption>)? (<CertificateInfo> <CertificateStatus> 5 1: INITIAL 2: Waiting for phishing check 3: Cancelled - Not Issued 4: Issue completed 6: Waiting for revocation 7: Revoked <StartDate> 25 -MM-DDTHH:MM:SS.000Z <EndDate> 25 -MM-DDTHH:MM:SS.000Z <CommonName> 64 String <SerialNumber> 64 String <SubjectName> 3000 String (<DNSNames>)? 300 String </CertificateInfo>)? (<Fulfillment> (<CACertificates> (<CACertificate> <CACertType> 15 String Root,Inter <CACert> 4000 String </CACertificate>)+ </CACertificates>)? (<ServerCertificate> <X509Cert> 4000 String <PKCS7Cert> 4000 String </ServerCertificate>)? </Fulfillment>)? <ModificationEvents> (<ModificationEvent> <ModificationEventName> 50 <ModificationEventTimestamp>25 -MM- DDTHH:MM:SS.000Z </ModificationEvent>)+ </ModificationEvents>? </OrderDetail>)? </Response> </GetOrderByOrderID> 7.3 Query API to get Issued Certificate - Multiple Orders (GetOrderByDateRange) GetOrderByDateRange Request <GetOrderByDateRange xmlns=" <Request> <QueryRequestHeader> <AuthToken> <UserName> 30 <Password> 30 </AuthToken> </QueryRequestHeader> <FromDate> -MM-DDTHH:MM:SS.000Z <ToDate> -MM-DDTHH:MM:SS.000Z (<OrderQueryOption> (<OrderStatus>)? 5 String true, false (<ReturnOrderOption>)? 5 String true, false (<ReturnCertificateInfo>)? 5 String true, false (<ReturnFulfillment>)? 5 String true, false (<ReturnCACerts>)? 5 String </OrderQueryOption>)? </Request> </GetOrderByDataRange> GetOrderByDateRange Response <GetOrderByDateRange xmlns=" GlobalSign API for SSL Certificates v4.3.5 Page 35 of 75
GlobalSign API for SSL Certificates
GlobalSign API for SSL Certificates Implementation Guide and Definitions Version 4.3.4 Version Release Notes Version 4.0 Initial Release Version 4.0.1 Changes - Added support for newer GCC2 type orders.
More informationGlobalSign API for SSL Certificates
a GlobalSign API for SSL Certificates Implementation Guide and Definitions version 4.2 Version Release Notes Version 4.0 Changes - Added support for newer GCC2 type orders. Now orders place via the GUI
More informationGlobalSign API for SSL Certificates. Implementation Guide and Definitions Version /23/2018. Version Release Notes
Version Release Notes GlobalSign API for SSL Certificates Implementation Guide and Definitions Version 4.3.7 04/23/2018 Version 4.3.7 Changes 04/23/2018 Removed references to AutoCSR. Changed validity
More informationGlobalSign API for MSSL Certificates
GlobalSign API for MSSL Certificates Implementation Guide and Definitions Version 1.2 Version Release Notes Version 1.0.1 Changes - Updated error codes Version 1.0.2 Changes - Workflow updates Version
More informationVersion 4.3. assecods.pl
` Version 4.3 assecods.pl ` Table of Contents 1. OVERVIEW... 6 1.1. API repository... 6 2. TYPE OF PRODUCTS... 7 2.1. ID Certificates... 7 2.2. SSL Certificates... 7 2.3. Premium EV Certificate... 7 2.4.
More informationGlobalSign API for EPKI
GlobalSign API for EPKI Implementation Guide and Definitions Version 2.7.2 Version Release Notes Version 1.1 04/28/2011 - Updated test system addresses Version 2.0 06/27/2011 Included updated functionality
More informationGlobalSign API for MSSL Certificates
GlobalSign API for MSSL Certificates Implementation Guide and Definitions Version 2.1 8/26/2016 Version Release Notes Version 2.1 Changes Added a new command to change SANs in existing MSSL certificates:
More informationGlobalSign API for CloudSSL
GlobalSign API for CloudSSL Implementation Guide and Definitions Version 2.11 12/12/2016 Version Release Notes Version 2.11 Changes - Updated acceptable domain-validation locations (Section 5.1.1) Version
More informationGlobalSign API for MSSL Certificates
GlobalSign API for MSSL Certificates Version Release Notes Implementation Guide and Definitions Version 2.4 04/23/2018 Version 2.4 Changes Modified references to AutoCSR to specify IntranetSSL products
More informationManaged SSL Quick Start Guide
GlobalSign Enterprise Solutions Managed SSL Quick Start Guide Version 4.9 Managing EV, OV and IntranetSSL Certificates Across our Organization Effectively TABLE OF CONTENTS TABLE OF CONTENTS... 2 1 INTRODUCTION...
More informationGeoTrust API Quick Guide
API Quick Guide API Quick Guide Table of Contents : Overview... : Using s API... : Organization Authenticated Certificates... : Domain Authenticated Certificates... 6 : QuickInvite Ordering Scenario...
More informationGlobalSign APIs for MSSL Certificates
GlobalSign APIs for MSSL Certificates Implementation Guide and Definitions Version 2.6 03/14/2019 Copyright 2011-2019 GlobalSign, Inc. All rights reserved. GlobalSign and the GlobalSign logo are trademarks
More informationDRAFT REVISIONS BR DOMAIN VALIDATION
DRAFT REVISIONS BR 3.2.2.4 DOMAIN VALIDATION (Feb. 15, 2016) Summary of changes The primary purpose of this change is to replace Domain Validation item 7 "Using any other method of confirmation which has
More informationCOMODO CA SSL CERTIFICATES
COMODO CA SSL CERTIFICATES Key Features and Comparisons Thank you for considering Comodo CA as your SSL security provider. This document contains a feature and price comparison of the Comodo range of certificates.
More informationValidation Working Group: Proposed Revisions to
Validation Working Group: Proposed Revisions to 3.2.2.4 Introduction Current Baseline Requirements For each Fully Qualified Domain Name listed in a Certificate, the CA SHALL confirm that, as of the date
More informationGAS (Global Agent System)
over 10 years of securing identities, web sites & transactions GAS (Global Agent System) Retail Certificate Issuance Edition 1.2 GlobalSign created the GAS (Global Agent System) as a highly flexible, multi-tiered,
More informationCOMODO CA SSL CERTIFICATES
COMODO CA SSL CERTIFICATES Key Features and Comparisons Thank you for considering Comodo CA as your SSL security provider. This document contains a feature and price comparison of Comodo s range of certificates.
More informationGlobalSign Integration Guide. GlobalSign Enterprise PKI (EPKI) and VMware Workspace ONE UEM (AirWatch)
GlobalSign Integration Guide GlobalSign Enterprise PKI (EPKI) and VMware Workspace ONE UEM (AirWatch) 1 Table of Contents Table of Contents... 2 Introduction... 3 GlobalSign Enterprise PKI (EPKI)... 3
More informationIceWarp SSL Certificate Process
IceWarp Unified Communications IceWarp SSL Certificate Process Version 12 Printed on 20 April, 2017 Contents IceWarp SSL Certificate Process 1 Choosing the Proper Certificate Type... 2 Creating your CSR
More informationTemplate for defining an RDS Purpose: Domain Name Certification Mailing list address: Mailing list archive:
Mailing list address: gnso-rds-pdp-3@icann.org Mailing list archive: http://mm.icann.org/pipermail/gnso-rds-pdp-3/ Coordinated by: David Cake Members: Kal Feher, Alex Deacon, Carlton Samuels, Jeremy Malcolm,
More informationSSL Certificates Enrollment, Collection, Installation and Renewal
SSL Certificates Enrollment, Collection, Installation and Renewal InCommon c/o Internet2 1000 Oakbrook Drive, Suite 300 Ann Arbor MI, 48104 Enrolling For Your Certificate This is step-by-step guide will
More informationGlobalSign Integration Guide
GlobalSign Integration Guide GlobalSign Enterprise PKI (EPKI) and MobileIron Cloud 1 v.1.1 Table of Contents Table of Contents... 2 Introduction... 3 GlobalSign Enterprise PKI (EPKI)... 3 Partner Product
More informationTechnical resources. OneClickSSL. ISPsystem Plug-in
Technical resources OneClickSSL ISPsystem Plug-in TABLE OF CONTENTS Introduction... 3 OneClickSSL Solution Architecture... 3 Before you begin... 4 OneClickSSL Requirements... 4 Installation... 4 Uninstall...
More informationGlobalSign Enterprise Solutions. Enterprise PKI. Administrator Guide. Version 2.6
GlobalSign Enterprise Solutions Enterprise PKI Administrator Guide Version 2.6 1 TABLE OF CONTENTS GETTING STARTED... 3 ESTABLISHING EPKI SERVICE... 3 CLIENT AUTHENTICATION CERTIFICATE... 4 ESTABLISHING
More informationOnlineNIC SSL API User Guide
OnlineNIC SSL API User Guide Build 4.0.4 For OnlineNIC Partners Catalog 1 Overview... 3 1.1OnlineNIC SSL API... 3 1.2 Test environment... 3 1.3 Technical support... 3 2 Using the API... 4 2.1 Request type
More informationStreamline Certificate Request Processes. Certificate Enrollment
Streamline Certificate Request Processes Certificate Enrollment Contents At the end of this section, you will be able to: Configure TPP to allow users to request new certificates through Aperture Policy
More informationBugzilla ID: Bugzilla Summary:
Bugzilla ID: Bugzilla Summary: CAs wishing to have their certificates included in Mozilla products must 1) Comply with the requirements of the Mozilla CA certificate policy (http://www.mozilla.org/projects/security/certs/policy/)
More informationCertificate Details Order Summary Full Order Details User & Contact Details GCC Log GCC Audit Log...
GlobalSign Enterprise Solutions SSL Managed Service Quick Start Guide Managing EV and non EV SSL Certificates Across Your Organizationn Effectively TABLE OF CONTENTS Introduction... 4 Advantages of SSL
More informationComodo Server Security Server
Comodo Server Security Server Software Version 2.4 Quick Start Guide Guide Version 2.4.041718 Comodo Security Solutions 1255 Broad Street Clifton, NJ 07013 1. Comodo Server Security Server Quick Start
More informationPerson determining CPS suitability for the policy CPS approval procedures 1.6. DEFINITIONS AND ACRONYMS
In this section of a CA s CPS, the CA shall provide a link to a web page or an email address for contacting the person or persons responsible for operation of the CA. 1.5.3. Person determining CPS suitability
More informationOverview and Tutorial
Overview and Tutorial Comodo Certificate Auto-installer is an easy-to-use utility which simplifies the often complex process of obtaining and installing an SSL certificate on IIS/Apache web-servers. The
More informationGlobalSign Enterprise Solution epki Administrator guide v1.9. GlobalSign Enterprise Solutions
GlobalSign Enterprise Solutions epki Quick Start Guide Managing PersonalSign and DocumentSign Certificates Across Your Organization Effectively GlobalSign Enterprise Solution epki Administrator guide v1.9
More informationCertDigital Certification Services Policy
CertDigital Certification Services Policy Page: 2 ISSUED BY : DEPARTAMENT NAME DATE ELECTRONIC SERVICES COMPARTMENT COMPARTMENT CHIEF 19.03.2011 APPROVED BY : DEPARTMENT NAME DATE MANAGEMENT OF POLICIES
More informationBut where'd that extra "s" come from, and what does it mean?
SSL/TLS While browsing Internet, some URLs start with "http://" while others start with "https://"? Perhaps the extra "s" when browsing websites that require giving over sensitive information, like paying
More informationSHS Version 1.2 CA. The Swedish Agency for Public Management oct This version:
SHS Version 1.2 CA 1 (11) SHS Version 1.2 CA The Swedish Agency for Public Management oct 2003 This version: http://www.statskontoret.se/shs/pdf/1.2ca.pdf Latest version: http://www.statskontoret.se/shs/pdf/shs-ca.pdf
More informationGlobalSign Enterprise Solutions
GlobalSign Enterprise Solutions Secure Mobile Access User Guide ios Identity certificates epki for ios Network Authentication 1 Table of Contents Introduction... 3 Establishing an epki Account... 3 Configuring
More informationComodo Certificate Manager
Comodo Certificate Manager SSL Certificates Enrollment, Collection, Installation and Renewal Comodo CA Limited 3rd Floor, 26 Office Village, Exchange Quay, Trafford Road, Salford, Greater Manchester M5
More informationRegistro Nacional de Asociaciones. Número CIF G
Registro Nacional de Asociaciones. Número 171.443. CIF G-63287510 Certificate for Secure Server (OV), Secure Server (DV), Secure Server (EV), Electronic Headquarters and Extended Validation Electronic
More informationAddress: B2, Industry Street, Qormi, QRM 3000 (Malta) Telephone: (+356) Fax: (+356) Web: ANF AC MALTA, LTD
Maltese Registrar of Companies Number C75870 and VAT number MT Certificate for Secure Server (OV), Secure Server (DV), Secure Server (EV), Electronic s and Extended Validation Electronic s Certificates
More informationComodo Certificate Manager
Comodo Certificate Manager Introduction to Auto-Installer Comodo CA Limited, 3rd Floor, 26 Office Village, Exchange Quay, Trafford Road, Salford, Greater Manchester M5 3EQ, United Kingdom. Certificate
More informationComodo Certificate Manager
Comodo Certificate Manager Device Certificate Enroll API Comodo CA Limited 3rd Floor, 26 Office Village, Exchange Quay, Trafford Road, Salford, Greater Manchester M5 3EQ, United Kingdom Table of Contents
More informationEnterprise Certificate Console. Simplified Control for Digital Certificates from the Cloud
Enterprise Certificate Console Simplified Control for Digital Certificates from the Cloud HydrantID Enterprise Management Console HydrantID s HydrantSSL Enterprise service and HydrantCloud Managed PKI
More informationComodo Certificate Manager
Comodo Certificate Manager Device Certificate Enroll API Comodo CA Limited 3rd Floor, 26 Office Village, Exchange Quay, Trafford Road, Salford, Greater Manchester M5 3EQ, United Kingdom Table of Contents
More informationDirector and Certificate Authority Issuance
VMware vcloud Director and Certificate Authority Issuance Leveraging QuoVadis Certificate Authority with VMware vcloud Director TECHNICAL WHITE PAPER OCTOBER 2012 Table of Contents Introduction.... 3 Process
More informationThis help covers the ordering, download and installation procedure for Odette Digital Certificates.
This help covers the ordering, download and installation procedure for Odette Digital Certificates. Answers to Frequently Asked Questions are available online CONTENTS Preparation for Ordering an Odette
More informationPublic. Atos Trustcenter. Server Certificates + Codesigning Certificates. Version 1.2
Atos Trustcenter Server Certificates + Codesigning Certificates Version 1.2 20.11.2015 Content 1 Introduction... 3 2 The Atos Trustcenter Portfolio... 3 3 TrustedRoot PKI... 4 3.1 TrustedRoot Hierarchy...
More informationComodo Certificate Manager
Comodo Certificate Manager Reports Web Services API Comodo CA Limited 3 rd Floor, 26 Office Village, Exchange Quay, Trafford Road, Salford, Greater Manchester M5 3EQ, United Kingdom. Table of Contents
More informationSoftware Version 5.0. Administrator Guide Release Date: 7th April, InCommon c/o Internet Oakbrook Drive, Suite 300 Ann Arbor MI, 48104
Software Version 5.0 Administrator Guide Release Date: 7th April, 2015 InCommon c/o Internet2 1000 Oakbrook Drive, Suite 300 Ann Arbor MI, 48104 Table of Contents 1 Introduction to InCommon Certificate
More informationH O W T O I N S T A L L A N S S L C E R T I F I C A T E V I A C P A N E L
H O W T O I N S T A L L A N S S L C E R T I F I C A T E V I A C P A N E L A R E S O U R C E F R O M M A K E M E B A I T. C O M B Y R A K T I M D U T T A How to Activate & Install an SSL Certificate in
More informationReports Web Services API. InCommon c/o Internet Oakbrook Drive, Suite 300 Ann Arbor MI, 48104
Reports Web Services API InCommon c/o Internet2 1000 Oakbrook Drive, Suite 300 Ann Arbor MI, 48104 Table of Contents 1 Introduction... 4 2 Authentication... 4 2.1 Authentication via Username and Password...4
More informationAirWatch Mobile Device Management
RSA Ready Implementation Guide for 3rd Party PKI Applications Last Modified: November 26 th, 2014 Partner Information Product Information Partner Name Web Site Product Name Version & Platform Product Description
More informationComodo Certificate Manager
Comodo Certificate Manager Version 5.7 SSL Certificates Enrollment, Collection, Installation and Renewal Guide Version 5.7.032817 Comodo CA Limited 3rd Floor, 26 Office Village, Exchange Quay, Trafford
More informationDigiCert User Guide (GÉANT)
DigiCert User Guide (GÉANT) Version 8.3 Table of Contents 1 User Management... 10 1.1 Roles and Account Access... 10 1.1.1 Administrator Role... 10 1.1.2 User Role... 10 1.1.3 EV Verified User... 10 1.1.4
More informationComodo Certificate Manager
Comodo Certificate Manager Simple, Automated & Robust SSL Management from the #1 Provider of Digital Certificates 1 Datasheet Table of Contents Introduction 3 CCM Overview 4 Certificate Discovery Certificate
More informationConfigure the IM and Presence Service to Integrate with the Microsoft Exchange Server
Configure the IM and Presence Service to Integrate with the Microsoft Exchange Server Configure a Presence Gateway for Microsoft Exchange Integration, page 1 SAN and Wildcard Certificate Support, page
More informationComodo Certificate Manager
Comodo Certificate Manager Reports Web Services API Comodo CA Limited 3 rd Floor, 26 Office Village, Exchange Quay, Trafford Road, Salford, Greater Manchester M5 3EQ, United Kingdom. Table of Contents
More informationVSP18 Venafi Security Professional
VSP18 Venafi Security Professional 13 April 2018 2018 Venafi. All Rights Reserved. 1 VSP18 Prerequisites Course intended for: IT Professionals who interact with Digital Certificates Also appropriate for:
More informationOnlineNIC SSL API User Guide
OnlineNIC SSL API User Guide Build 4.0.5 For OnlineNIC Partners 1. OVERVIEW... 3 1.1 OnlineNIC SSL API... 3 1.2 Test environment... 3 1.3 Technical support... 3 1.4 Change Logs... 3 2. USING THE API...
More informationGuide to Deploying VMware Workspace ONE. DEC 2017 VMware AirWatch 9.2 VMware Identity Manager 3.1
Guide to Deploying VMware Workspace ONE DEC 2017 VMware AirWatch 9.2 VMware Identity Manager 3.1 You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/
More informationCertCentral API Public SSL/TLS Certificate Transparency Opt Out Guide
CertCentral API Public SSL/TLS Certificate Transparency Opt Out Guide Version 1.3 Table of Contents 1 Logging Public SSL/TLS Certificates to Public CT Logs... 3 1.1 Will DigiCert Log All Certificates to
More informationManaged DNS API Specification Version July 28, 2008
Managed DNS API Specification Version 2.8.8 July 28, 2008 Table of Contents Revisions and Updates...6 Introduction...7 Definition of terms used in this document...7 Validation Rules...8 Other constraints...9
More informationIntegrating AirWatch and VMware Identity Manager
Integrating AirWatch and VMware Identity Manager VMware AirWatch 9.1.1 This document supports the version of each product listed and supports all subsequent versions until the document is replaced by a
More informationCertification Policy of CERTUM s Certification Services Version 4.0 Effective date: 11 August 2017 Status: archive
Certification Policy of CERTUM s Certification Services Version 4.0 Effective date: 11 August 2017 Status: archive Asseco Data Systems S.A. Podolska Street 21 81-321 Gdynia, Poland Certum - Powszechne
More informationDomain Control Validation in Comodo Certificate Manager
Domain Control Validation in Comodo Certificate Manager The purpose of this document is to explain the new domain control validation (DCV) processes for the Comodo Certificate Manager. DCV is an industry
More informationPURCHASING AN ENTRUST DATACARD SSL/TLS CERTIFICATE. Document issue: 12.2 Date of issue: July 2017
PURCHASING AN ENTRUST DATACARD SSL/TLS CERTIFICATE Document issue: 12.2 Date of issue: July 2017 Entrust is a registered trademark of Entrust, Inc. in the United States and certain other countries. Entrust
More informationDigiCert User Guide. Version 6.4
DigiCert User Guide Version 6.4 Table of Contents 1 User Management... 9 1.1 Roles and Account Access... 9 1.1.1 Administrator Role... 9 1.1.2 User Role... 9 1.1.3 EV Verified User... 9 1.1.4 CS Verified
More informationDigiCert User Guide (GÉANT)
DigiCert User Guide (GÉANT) Version 6.8 Table of Contents 1 User Management... 10 1.1 Roles and Account Access... 10 1.1.1 Administrator Role... 10 1.1.2 User Role... 10 1.1.3 EV Verified User... 10 1.1.4
More informationVMware AirWatch Integration with RSA PKI Guide
VMware AirWatch Integration with RSA PKI Guide For VMware AirWatch Have documentation feedback? Submit a Documentation Feedback support ticket using the Support Wizard on support.air-watch.com. This product
More informationVMware AirWatch Certificate Authentication for Cisco IPSec VPN
VMware AirWatch Certificate Authentication for Cisco IPSec VPN For VMware AirWatch Have documentation feedback? Submit a Documentation Feedback support ticket using the Support Wizard on support.air-watch.com.
More informationGuide to Deploying VMware Workspace ONE. VMware Identity Manager VMware AirWatch 9.1
Guide to Deploying VMware Workspace ONE VMware Identity Manager 2.9.1 VMware AirWatch 9.1 Guide to Deploying VMware Workspace ONE You can find the most up-to-date technical documentation on the VMware
More informationCitrix Analytics Data Governance Collection, storage, and retention of logs generated in connection with Citrix Analytics service.
Citrix Analytics Data Governance Collection, storage, and retention of logs generated in connection with Citrix Analytics service. Citrix.com Data Governance For up-to-date information visit: This section
More informationWorkspace ONE UEM Certificate Authentication for Cisco IPSec VPN. VMware Workspace ONE UEM 1810
Workspace ONE UEM Certificate Authentication for Cisco IPSec VPN VMware Workspace ONE UEM 1810 You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/
More informationTroubleshooting External Services (External Message Store, Calendar Integrations, Calendar Information for PCTRs) in Cisco Unity Connection 8.
6 CHAPTER Troubleshooting External Services (External Message Store, Calendar Integrations, Calendar Information for PCTRs) in Cisco Unity Connection 8.0 See the following sections: Troubleshooting Access
More informationWorkspace ONE UEM Integration with RSA PKI. VMware Workspace ONE UEM 1810
Workspace ONE UEM Integration with RSA PKI VMware Workspace ONE UEM 1810 You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/ If you have comments
More informationOKPAY guides INTEGRATION OVERVIEW
Название раздела OKPAY guides www.okpay.com INTEGRATION OVERVIEW 2012 Contents INTEGRATION OVERVIEW GUIDE Contents 1. Payment System Integration 2. OKPAY Integration Types 2.1. Basic Payment Links and
More informationGeneral Settings General Settings Settings
Contents General Settings... 3 Payment Methods... 31 Currency Management... 35 Sales Tax... 37 Commission Settings... 40 Affiliate Commission Settings... 43 Email Templates Management... 46 Subscription
More informationComodo Certificate Manager Version 5.7
Comodo Certificate Manager Version 5.7 Device Certificate Enroll API Guide Version 5.7.032817 Comodo CA Limited 3rd Floor, 26 Office Village, Exchange Quay, Trafford Road, Salford, Greater Manchester M5
More informationGuide to Deploying VMware Workspace ONE with VMware Identity Manager. SEP 2018 VMware Workspace ONE
Guide to Deploying VMware Workspace ONE with VMware Identity Manager SEP 2018 VMware Workspace ONE You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/
More informationSSL. Ensure trust with our premium service
SSL Ensure trust with our premium service SSL Our new automated SSL service will ensure that your lead times for the issuing of SSL Certificates will match the best standards on the market. Find out more
More informationOracle Eloqua Legacy Authenticated Microsites and Contact Users. Configuration Guide
Oracle Eloqua Legacy Authenticated Microsites and Contact Users Configuration Guide 2019 Oracle Corporation. All rights reserved 04-Jan-2019 Contents 1 Authenticated microsites 3 2 Creating authenticated
More informationVocera Messaging Platform API Guide. Version 5.2.3
Vocera Messaging Platform API Guide Version 5.2.3 Notice Copyright 2002-2018 Vocera Communications, Inc. All rights reserved. Vocera is a registered trademark of Vocera Communications, Inc. This software
More informationOracle is a registered trademark of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners.
Primavera Portfolio Management 9.0 What s New Copyright 1999-2011, Oracle and/or its affiliates. The Programs (which include both the software and documentation) contain proprietary information; they are
More informationSecurity Protocols and Infrastructures
Security Protocols and Infrastructures Dr. Michael Schneider michael.schneider@h-da.de Chapter 5: Standards for Security Infrastructures November 13, 2017 h_da WS2017/18 Dr. Michael Schneider 1 1 Introduction
More informationIoPT Consulting, LLC 2 June 2015
NY/NJ IBM MQ & Application Integration User Group 1 NY/NJ IBM MQ & Application Integration User Group 2 NY/NJ IBM MQ & Application Integration User Group 3 NY/NJ IBM MQ & Application Integration User Group
More informationManage Certificates. Certificates Overview
Certificates Overview, page 1 Show Certificates, page 3 Download Certificates, page 4 Install Intermediate Certificates, page 4 Delete a Trust Certificate, page 5 Regenerate a Certificate, page 6 Upload
More informationDigital Certificates Demystified
Digital Certificates Demystified Ross Cooper, CISSP IBM Corporation RACF/PKI Development Poughkeepsie, NY Email: rdc@us.ibm.com August 9 th, 2012 Session 11622 Agenda Cryptography What are Digital Certificates
More informationUpland Qvidian Proposal Automation Single Sign-on Administrator's Guide
Upland Qvidian Proposal Automation Single Sign-on Administrator's Guide Version 12.0-4/17/2018 Copyright Copyright 2018 Upland Qvidian. All rights reserved. Information in this document is subject to change
More informationDomain Control Validation in Comodo Certificate Manager
Domain Control Validation in Comodo Certificate Manager The purpose of this document is to explain the new domain control validation (DCV) processes for the Comodo Certificate Manager. DCV is an industry
More informationGlobalSign Certification Practice Statement
GlobalSign Certification Practice Statement Date: May 12th 2009 Version: v.6.5 Table of Contents DOCUMENT HISTORY... 3 HISTORY... 3 ACKNOWLEDGMENTS... 4 1.0 INTRODUCTION... 5 1.1 OVERVIEW... 6 1.2 GLOBALSIGN
More informationComodo Certificate Manager Version 5.7
Comodo Certificate Manager Version 5.7 Reports Web Services API Guide Version 5.7.032817 Comodo CA Limited 3 rd Floor, 26 Office Village, Exchange Quay, Trafford Road, Salford, Greater Manchester M5 3EQ,
More informationCA IdentityMinder. Glossary
CA IdentityMinder Glossary 12.6.3 This Documentation, which includes embedded help systems and electronically distributed materials, (hereinafter referred to as the Documentation ) is for your informational
More informationImportant Notice. Important Notice
Important Notice Varien reserves the right to make corrections, modifications, enhancements, improvements, and other changes to its products and services at any time and to discontinue any product or service
More informationAusCERT Certificate Services Manager. AusCERT Certificate Services Manager Reports Web Services API 1
AusCERT Certificate Services Manager Reports Web Services API 1 Table of Contents 1 Introduction...4 2 Remote Functions...4 2.1 Function for Getting Activity Report...4 2.1.1 Arguments...4 2.1.1.1 AuthData
More informationComodo Certificate Manager Version 5.6
Comodo Certificate Manager Version 5.6 Reports Web Services API Guide Version 5.6.011317 Comodo CA Limited 3 rd Floor, 26 Office Village, Exchange Quay, Trafford Road, Salford, Greater Manchester M5 3EQ,
More informationGenesys Security Deployment Guide. What You Need
Genesys Security Deployment Guide What You Need 12/27/2017 Contents 1 What You Need 1.1 TLS Certificates 1.2 Generating Certificates using OpenSSL and Genesys Security Pack 1.3 Generating Certificates
More informationVMware AirWatch Integration with SecureAuth PKI Guide
VMware AirWatch Integration with SecureAuth PKI Guide For VMware AirWatch Have documentation feedback? Submit a Documentation Feedback support ticket using the Support Wizard on support.air-watch.com.
More informationServer software page. Certificate Signing Request (CSR) Generation. Software
Server software page Certificate Signing Request (CSR) Generation Software Apache (mod_ssl and OpenSSL)... 2 cpanel and WHM... 3 Microsoft Exchange 2007... 8 Microsoft Exchange 2010... 9 F5 BigIP... 13
More informationVideoscape Control Suite BSS/OSS Adaptor Service Configuration Guide
Videoscape Control Suite 3.5.2 BSS/OSS Adaptor Service Configuration Guide BOA Configuration Guide Table of Contents About This Guide... 4 Introduction...4 Purpose...4 Prerequisites...4 Installation...4
More informationCERTIFICATE POLICY CIGNA PKI Certificates
CERTIFICATE POLICY CIGNA PKI Certificates Version: 1.1 Effective Date: August 7, 2001 a Copyright 2001 CIGNA 1. Introduction...3 1.1 Important Note for Relying Parties... 3 1.2 Policy Identification...
More informationManaging GSS Devices from the GUI
CHAPTER 1 This chapter describes how to configure and manage your Global Site Selector Manager (GSSM) and Global Site Selector (GSS) devices from the primary GSSM graphical user interface. It includes
More information