Issue certificate from DigiCert® Trust Lifecycle Manager using DigiCert Trust Assistant
There are two ways to issue certificates using DigiCert Trust Assistant:
Using browser flow.
Using automatic or manual methods through DigiCert Trust Assistant (no browser needed, but requires sign-in).
This page explains the browser-based issuance and renewal process. For information about the alternative method, refer to Signing In.
Issue certificate from browser flow using DigiCert Trust Assistant
Access the enrollment URL on any of the supported browsers on your machine and wait for the page to load completely.
All eligible tokens are listed on this page. Select the target token where you want to install the certificate. Enter the enrollment details and click on Update.
Enter the token PIN in the pop-up dialog box and click OK. (Every wrong PIN entered here consumes a PIN retry attempt counter. Try to avoid repetitive wrong attempts.)
After the PIN confirmation, the successful enrollment message is displayed.
Install the certificate to the token by clicking on Install Certificate and entering the token PIN in the popup dialog box.
The certificate is successfully installed.
Once the certificate is successfully installed, the DigiCert Trust Assistant executes the post-processing scripts (only if configured by your administrator) as a part of post certificate installation tasks. You will see the Post certificate installation section soon after the certificate gets successfully installed on your computer.
For example, DigiCert Trust Assistant might configure MS Outlook's security profile to use the target certificate for signing and encryption.
Renew certificates from browser flow DigiCert® Trust Lifecycle Manager using DigiCert Trust Assistant
Based on your renewal setting configured in your certificate profile, proceed and renew your certificate. Make sure that the renewal request is sent from the same computer where the certificate to be renewed is installed, or else the request will fail.
When the certificate installation is complete, you can verify the certificate details in the corresponding KeyStore.