As explained in com.Sectigo, you can optionally select a key store as authentication mode for the Sectigo login. See below for instructions on how to create this key store.
We recommend omitting this section and selecting a password instead when configuring the com.Sectigo settings.
Creating the enrollment form
Create an enrollment form for the client certificate.
- Log in to the Sectigo portal using your browser.
- Go to Enrollment > Enrollment Forms.
- Click the + icon to create a new form.
- In the Name field, enter a name for the enrollment form. For example:
myOrganization - Client certificate
- In the Type list, select Client certificate self-enrollment.
- In the Configuration tab, enable Secret ID.
- Generate the Enrollment Endpoint URL.
Adding a person
Add a person to the Sectigo configuration.
- Navigate to Persons.
- Click the + icon.
- Complete the Add New Person fields. Specifically:
- Provide a secret.
- Select the same email address you will later use for the administrator.
Issuing the client certificate
Issue a client certificate to authenticate in the Sectigo API.
- Open the newly created enrollment form in a new browser tab.
- Issue a certificate using the same secret and email address configured for the newly created person.
- Download the PKCS #12 file.
Creating an administrator
Create a user with administrator privileges in Sectigo.
- Navigate to Settings > Admins.
- Click the + icon.
- In the Add Admin Type dialog, select Standard.
- Complete the Add New Admin fields. Specifically:
- Use the same email address configured for the newly created person.
- In the Authentication tab, select the newly issued certificate.