Skip to main content

Create a release

You require the Request release window permission to create a release.

To create a release:

  1. Sign in to DigiCert ONE.

  2. Select the Manager menu (top right) > Software Trust.

  3. Navigate to: Releases > Create release.

  4. Complete the following fields:

    Field

    Description

    Release name

    Name to uniquely identify this release.

    Note

    • Spaces are not allowed in Release names.

    • Only letters, numbers, and these characters are allowed: ., _, -.

    Version

    Enter a version number for the release. This is an optional field.

    Team

    This field displays when teams are enabled.

    Select a team responsible for this release.

    Release purpose

    This option may be preselected based on your selection in Account settings. However, if you have checked all three of the following options in Account settings, you can select one of the following when creating a release:

    • Sign

    • Detect threats

    • Detect threats then sign

    Note

    This section is only visible if Threat detection is enabled in Account settings.

    Block signing if the CI/CD status for threat detection fails

    Select this checkbox to block signing if the threat detection scan status fails.

    Note

    This option is only editable if you have selected Specify when creating a release in Account settings.

    Project

    If the purpose of the release includes Threat detection, you are required to associate the release with a Project.

    Release status

    For offline releases, select Pending or Approved.

    Release window

    Set the timeframe of the release by selecting one of the following options:

    • Select the start date and time, as well as the duration of the release window.

    • Select the date and time range for the release window.

    Note

    Insert a custom note that can give additional details about the release. This is an optional field.

  5. Click Next.

  6. Select Add a keypair.

    Note

    If Teams are enabled in Account settings, you can assign multiple keypairs to the release. However, if teams are disabled, you can only assign one keypair to the release.

  7. Specify the following parameters to narrow down the keypairs displayed for selection on the next page.

    Field

    Description

    Keypair type

    Select GPG or standard.

    Keypair status

    Select one of the following keypair types:

    • Online

      To use online keypairs that can be used at any time by users who have access.

    • Offline

      To use offline keypairs that can only be used during a release window.

    • Test

      To use test keypairs that can be used at any time by users who have access.

    Only show keypairs with default certificates (optional)

    Select this checkbox to filter the keypair list and only select from keypairs that have default certificates.

  8. Select one or more keypair that should be used this release.

  9. Click Add.

  10. Search for and select users or groups responsible for signing with this keypair during the release.

  11. Optional: In the Maximum signatures field, limit how many signatures can be completed during this release.

  12. Optional: In the Release baseline field, select a release baseline to compare your current release to.

    Note

    If a signature does not match the baseline, we will halt the release so that you can address the issue first.

  13. In the Resources for threat detection section, select users and, or groups responsible for threat detection.

    Note

    This section is only visible if Threat detection is enabled in Account settings.

  14. Click Create release.