See below for editing the settings of a Certificate Authority (CA).

To edit a Certificate Authority

1. Open the following URL in a Web browser. 

   https://<machine>/management-console

   Where <machine> is the IP address or domain name of the machine hosting Cryptographic Security Platform.

2. Log in to the Management Console as one of the users created in Creating Certificate Authority tenants. This user will be the tenant of the new issuing Certificate Authority.
3. In the content pane, click Manage Solution under Certificate Authority (CA).
   
4. Select Operations in the sidebar.
   
5. Select an organization under Organizations list. 
6. Select a CA under Certificate Authority.
7. Click Edit to display the CA settings in the Edit Certificate Authority dialog. Of these settings, you can only edit the following ones: 
   • Certificate Profiles
   • Auditors
   • Administrators
   Meaning that you cannot modify any setting of an External Root Certificate Authority.

Certificate Profiles

The profiles the Certificate Authority will support for issuing certificates. See the Certificate profiles reference for a description of each profile.

Mandatory: Select at least one profile.

Auditors

Enter the names of the users who will have auditor permission on the Certificate Authority. For each name, you can:

• Enter a user name already assigned to another CA so that the user will have permissions on different CAs.
• Enter a new user. 

Mandatory: No. When omitting this value, the Certificate Authority will not have users with only auditing permission.

Administrators

Enter the names of the users who will have administration permission on the Certificate Authority. For each name, you can:

• Enter a user name already assigned to another CA so that the user will have permissions on different CAs.
• Enter a new user. 

Mandatory: Yes. Add the name of at least one administrator.