Skip to main content

Define policies to ensure compliance

DigiCert​​®​​ Trust Lifecycle Manager uses templates and profiles to enforce consistent certificate use and help you comply with organizational policies plus industry standards such as NIST, FIPS, and the CA/Browser Forum. Each profile defines a specific type of certificate that can be issued in your account, along with the allowed methods for enrolling that certificate type and authenticating each request.

Topic

Description

Certificate attributes and extensions

Technical descriptions of some of the main certificate properties supported by Trust Lifecycle Manager.

Enrollment and authentication methods

Descriptions of the supported methods for enrolling certificates in Trust Lifecycle Manager and authenticating those requests.

Base templates

Base templates are the starting point for creating certificate profiles. To create a profile, you choose the template for the applicable certificate type, then fine-tune the configuration to meet your organization's requirements.

Certificate profiles

Certificate profiles define the properties for a certificate type you can issue, and the allowed enrollment and authentication methods. To issue certificates in your Trust Lifecycle Manager account, you must have an available certificate profile.

Prepare enrollment codes for authentication

Enrollment codes function like passwords, and are one authentication method you can use to validate certificate requests. You must register the allowed codes in Trust Lifecycle Manager before users can authenticate with them.