Skip to main content

Create root and issuing CAs

If you already have access to an issuing CA on your account, skip this step.

If you have not, reach out to your system administrator or DigiCert representative to create the required CA hierarchy and ensure the below configuration option is set.

Note

The DigiCert​​®​​ Trust Lifecycle Manager SCEP service can make use of both RSA and ECDSA issuing CAs to sign RSA (only) end-entity certificates via the SCEP protocol.