Skip to main content

Secure Software Manager

Enhancements

SMCTL enhancements - We are releasing an updated version of the SMCTL client to provide customers with the following new functionality when they install the latest version of the SMCTL:

  • Support for certificate profile list and describe in SMCTL.

  • Support for keypair profile list and describe in SMCTL.

  • Enhanced help section by providing "man (manual) page" overview for SMCTL client.

  • Provide ability for users to download certificate via SMCTL to improve Microsoft Signing Workflows.

  • Extend support to show user and user groups access in Keypair describe.

  • Added support for KSP register, remove, list and sync to be accommodated via the SMCTL.

  • Extend support for KSP sync to accommodate the syncing of the default certificate based on user supplying the keypair alias

    Nota

    KSP register and KSP remove require PC admin rights.

Updates

Online documentation - Secure Software Manager Administration Guide will move into the DigiCert One Online Documentation and this is available for customers to access from the Resources section of the Secure Software Manager UI.

CertCentral Custom order form field support - CertCentral offers customers the ability to provide mandatory and optional custom order form fields which their users populate at the time of order placement. We have extended support for this in Secure Software Manager and provide customers with the ability to capture this information dynamically at time of certificate order or capture this statically as part of the Secure Software Manager Public Certificate Profiles.

Blocking SHA1 signatures related to Public Trust Certificate - In order to comply with new guidelines issues by the Certificate Authority and Browser (CAB) forum, we will begin to block sha1 signatures related to Public Trust Certificates which are associated with private keys hosted in customers Secure Software Manager accounts.

Audit and reporting enhancements - We have added functionality to our audit and signature logs to support searching and filtering of these logs by users name and also by detected user IP address related to the log events.

Fixes

  • CertCentral order sync issue resolved related to multi-approval approval settings on customers CertCentral account.

  • We have released an updated version of our PKCS#11 client to support chaining of hierarchy to the certificate used in the signature to support verification for Java Signing.

  • Correct label in keypair details UI to reflect keypair status of being online/offline instead of active/suspended.