Skip to main content

Get started with on-premise DigiCert® Private CA

Refer to this checklist for first-time setup of on-premise DigiCert® Private CA.

Step 1: Enable your on-premise account

Contact your DigiCert account manager or representative to activate your on-premise service, get the license file required to install DigiCert® Private CA on your premises, and get default sign-in credentials.

Step 2: Install on-premise DigiCert® Private CA

  1. Prepare your DigiCert® Private CA hosting environment.

  2. Install DigiCert® Private CA.

Step 3: Sign in and configure on-premise DigiCert® Private CA

  1. Sign in to your new local instance of DigiCert® Private CA with the default credentials. Set your new password.

  2. Add admins and users.

    1. Add admin users to configure the on-premise DigiCert® Private CA and manage your CAs.

    2. Create service users for API connectivity and functionality.

  3. Add and configure hardware security modules (HSM).

    In the on-premise DigiCert® Private CA, in the CA Services menu, select HSM and choose from the supported device types.

  4. Configure your certificate validation policies.

    In the on-premise DigiCert® Private CA, in the CA Services menu, review and update your certificate validation information.

    • CRLs

    • OCSPs

    • AIAs

    • Domains

Step 4: Add your root and intermediate CAs

Create or import your root and intermediate CAs.

Step 5: Connect to your certificate lifecycle management services

To enroll, issue, and manage end-entity certificates using the CAs in your private CA, refer to the DigiCert ONE CA Manager APIs and the appropriate documentation for your certificate management services.

Importante

When calling the CA Manager API operations, make sure {server} is the host server for your local instance of DigiCert® Private CA.

En esta sección: