End Entity Profiles

End entity profiles bound what End Entities can be issued with, how they authenticate and more.

End Entity Profile Form

End entity profiles can be created and edited at any time.

Basic Settings

Provide name and description.

Password Configuration

Password configuration creates constraints for password strength or can specify one directly.

Email Configuration

Controls specification of End Entity email field, requiring one and bounding it to a domain.

Subject configuration

End entity Subject data can be controlled with this configuration

Subject DN Configuration

The distinguished name fields here can be specified, required, or allow default values when none are provided.

Subject SAN Configuration

The alternate name fields here can be specified, required, or allow default values when none are provided.

Certificate Profile and CA Settings

This controls what certificate authorities and profiles can issue on behalf of this end entity profile. A selection of each available and a default from that available selection is required.

Approval Settings

Optional approval profile selection to require approvals for issuance that utilizes this end entity profile. See Approval Profiles.

Validity Settings

Controls the manipulation of the issued certificate's validity period, if enabled and set.

Name Constraints

Sets the Name Constraints extension.

Custom Extensions

Allows for user provided custom certificate extensions.

End Entity Profile Form​

Basic Settings​

Login ID Configuration​

Password Configuration​

Email Configuration​

Subject configuration​

Subject DN Configuration​

Subject SAN Configuration​

Certificate Profile and CA Settings​

Approval Settings​

Validity Settings​

Name Constraints​

Custom Extensions​