Skip to main content

Add credentials to an authentication policy

  1. Sign in to DigiCert® ONE as a Solution Administrator.

  2. In DigiCert ONE, in the Manager menu (grid at top right), select Device Trust.

Depending on the type of credentials you need to add to an authentication policy, follow the relevant steps in the sections below.

|

  1. In the Device Trust Manager menu, select Authentication management > Authentication policies.

  2. Select the Authentication policy for which you want to add the Passcodes.

  3. Click Add passcode.

  4. Enter a Name.

    This name must be unique within the chosen policy.

  5. Optionally, add a Description.

  6. Choose an existing authentication policy to assign to this passcode.

    You can also create a new authentication policy.

  7. Select whether you want the system to generate the passcode for you or if you want to provide your own passcode.

  8. (Optional) Select the checkbox to enable the username requirement and specify a username for the passcode.

  9. Set a Usage limit, or leave it blank for unlimited use.

  10. Optionally, define a Start Date and End Date.

  11. Optionally, add registered values.

    For more information on registered values and how registered values work, see Registered values.

  12. Select Create passcode. If you had DigiCert​​®​​ generate the passcode for you, save it in a secure place, and click Finish.

  1. In the Device Trust Manager menu, select Authentication management > Authentication policies.

  2. Select the Authentication policy for which you want to add the Authentication certificates.

  3. Navigate to the Authentication certificates tab and click Add authentication certificates.

  4. Enter a Name. T

    This name must be unique within the chosen policy.

  5. Choose an existing authentication policy to assign to this authentication certificate.

    You can also create a new authentication policy.

  6. Authenticate devices for this certificate by specifying the authentication CA from the dropdown list or upload a certificate.

  7. Select the Require passcode checkbox if you want the system to generate the passcode for you or if you want to provide your own passcode.

  8. Set a Usage Limit, or leave it blank for unlimited use.

  9. Define a validity period for this authentication certificate by specifying the Start and End dates.

  10. Optionally, add registered values.

    For more information on registered values and how registered values work, see Registered values.

  11. Click Add authentication certificate.

  1. In the Device Trust Manager menu, select Authentication management > Authentication policies.

  2. Select the Authentication policy for which you want to add the Authentication CA.

  3. Navigate to the Authentication CAs tab and click Add Authentication CA.

  4. Upload the Authentication CA.

  5. Optionally, add a Description.

  6. Optionally, Assign or create an authentication policy for this CA.

  7. Select or create an Authentication Policy for the CA.

  8. Select an existing authentication policy to assign to this authentication CA from the dropdown list.

    You can also create a new authentication policy.

  9. Click Add Authentication CA.

The Automated Certificate Management Environment (ACME) protocol, defined in RFC 8555, is a widely used protocol for automating the certificate issuance and management process. ACME eliminates the need for manual interactions in certificate lifecycle operations, making it well-suited for IoT devices, cloud services, and other automated environments.

To add ACME credentials to the authentication policy:

  1. In the Device Trust Manager menu, select Authentication management > Authentication policies.

  2. Select the Authentication policy for which you want to add the ACME credentials.

  3. Navigate to the ACME credentials tab and click Add ACME credentials.

  4. Enter a Name.

    This name must be unique within the chosen policy.

  5. Optionally, provide a Description.

  6. Choose an existing authentication policy to assign to this ACME credentials from the dropdown list.

    You can also create a new authentication policy.

  7. Upload a public key if you have one. If you do not have a public key, select the No, generate an HMAC for me option; the system generates a Hash-based Message Authentication Code (HMAC), which registers a public key with your account.

  8. Set a Usage limit.

  9. Define a validity period for this authentication certificate by specifying the Start and End dates.

  10. Click Add ACME credential.

이 섹션의 내용:
© 2025 DigiCert, Inc.
Publication date: