CA Gateway configuration parameters.

Mandatory: When Certificates Source is CAGW.

Push by serial

The certificate information pushed into the Validation Authority database.

• Check this box to push the certificate serial number​
• Uncheck this box to push the whole DER encoding of the certificate

Mandatory: No. This optional value defaults to false (unchecked).

TLS CA certificate

The CA certificate for validating the CA Gateway TLS server certificate. Click Select Files to import this certificate from file.

Mandatory: Yes.

TLS client certificate

The identifier of the client CA Gateway certificate described in CA Gateway for Validation Authority. 

Mandatory: No. This optional parameter defaults to the latest client certificate imported with the evactl import-p12 command. 

Timeout

The timeout for connections with the CA Gateway server. When a connection attempt with the CA Gateway server exceeds this period:

1. The request fails.
2. Validation Authority tries another connection after the Wait on error duration period selected in CSP CA Gateway.

Mandatory: No. This optional value defaults to "5s".

Batch Size

The maximum number of certificates to retrieve in every request to CA Gateway. Select an integer value starting from 1.

Mandatory: No. This optional value defaults to 50.

Wait on error duration

The waiting time before retrying a failed connection with CA Gateway or the Status Feeder internal service.

Mandatory: No. This optional value defaults to "5s".

Wait to pull certs duration

The waiting time for Validation Authority while not receiving new events. When this period expires, Validation Authority sends a new request to CA Gateway.

Mandatory: Yes.

URL

The URL of the CA Gateway server. For example:

Mandatory: Yes.