DigiCert​​®​​ IoT Trust Manager

Left Navigation Menu – consolidated navigation to 5 headers. The bulk of the menu is found under “Devices”, “Certificates” and “Enrollment Configurations”.

Enrollment Profile Authentication CA – Added the option to assign an authentication CA to an enrollment profile. Certificate issued from the authentication CAs associated with an enrollment profile are considered valid credentials for authentication to EST, SCEP and CMPv2.

Enrollment Profile CMPv2 Options – Added the option to require a confirmation of successful receipt of the certificate from the CMPv2 client. If enabled, then the CMPv2 client must send a confirmation, within a specified timeframe, to the CMPv2 service that the certificate was successfully received. If the CMPv2 client does not send the confirmation, then the certificate is revoked.

Authentication CA – Now certificate authority (CA) certificates can be designated as an Authentication CA. An authentication CA means that the certificates issued from the CA are considered valid credentials for certificate enrollment. The authentication CAs can be assigned to enrollment profiles to setup certificate authentication for those profiles. Currently only SCEP, EST and CMPv2 are the enrollment methods supporting certificate authentication.

Certificate Authentication for CMPv2 – Added the option to enroll and re-enroll using certificate authentication for CMPv2. Certificate authentication was already supported to enroll and re-enroll for SCEP and EST enrollment methods, this release added this authentication type for the CMPv2 enrollment method.