Skip to main content

Create automation profiles for private Microsoft certificates

Before you begin

Belangrijk

For a complete guide covering all the steps needed to integrate with and get certificates from a Microsoft CA, see Microsoft CA server integration.Microsoft CA server integration

Create the certificate profile

  1. From the main menu, select Policies > Certificate profiles.

  2. Select the Create profile from template button at top.

  3. Select the Microsoft CA Private Server Certificate template as the basis for creating the profile.

  4. Fill in the Primary options for your new profile:

    • Profile name: Enter a friendly name for this profile.

    • Business unit: Select the business unit for certificates issued from this profile.

    • Connector: Select the DigiCert​​®​​ Trust Lifecycle Manager connector that links to Microsoft.

    • Issuing CA certificate template: Select the external certificate template that the Microsoft CA uses to issue certificates.

    • Enrollment method:

      • Select DigiCert agent to install certificates to web servers using DigiCert agents.

      • Select DigiCert sensor to install certificates to network appliances or cloud services using DigiCert sensors.

      • Select 3rd-party ACME client to request and install certificates using a third-party ACME client instead of DigiCert's managed automation tools.

  5. Select the Certificate options for certificates issued from this profile:

    • Certificate fields: Verify the certificate validity and encryption options. These come from the issuing CA certificate template you selected in the previous step. To make changes, go back and select a different issuing CA certificate template.

    • Renewal options: Select whether auto-renewal should be enabled for certificates. If enabled, select whether to renew certificates 30 days before expiration or set up a custom schedule.

  6. Verify the certificate Extensions. These come from the issuing CA certificate template. To make changes, go back and select a different issuing CA certificate template.

  7. Select any Additional options for:

    • Email configuration and notifications: Email communications settings for certificate lifecycle event notifications.

    • Contact details: Optionally enter a custom administrative contact for certificate notifications.

    • Tags: Enter custom tags to apply to all certificates issued from this profile. Tags help identify the certificates for tracking and management purposes.

  8. When you are ready, select Create to save the new certificate automation profile

In deze sectie: