Skip to main content

Prepare enrollment codes for authentication

For certificate profiles that use the Enrollment Code authentication method, you must register the allowed enrollment codes in DigiCert​​®​​ Trust Lifecycle Manager before users can enroll certificates from those profiles.

To prepare enrollment codes in Trust Lifecycle Manager, you use the Enroll seat function. This function links a seat record to a certificate profile and defines the enrollment code the user must enter to authenticate and issue a certificate against that seat.

Important

Some enrollment methods such as SCEP and EST allow you to define a global enrollment code in the profile itself, which anyone can use to enroll certificates from that profile. However, for enhanced security, DigiCert recommends enforcing a unique enrollment code for each client.