In Entrust Certificate Authority, map certificate definition policies to the certificate types created in Adding certificate types to Entrust Certificate Authority for CMPv2 enrollment.

Mapping to the CMPv2 Encryption certificate type

See below to map an Entrust Certificate Authority certificate definition policy to the CMPv2 Encryption certificate type.

To map a certificate definition policy to the CMPv2 Encryption certificate type

  1. Log in to Entrust Certificate Authority Administration or Security Manager Administration for the CA.
  2. In the tree view, expand Security Policy > Certificate Categories > Enterprise > CMPv2 Encryption > Encryption_p10.
  3. In the Certificate definition Policy drop-down list, select Encryption_P10 policy.
  4. Click Apply.
  5. If prompted, authorize the operation.

Mapping to the CMPv2 Signing certificate type

See below to map an Entrust Certificate Authority certificate definition policy to the CMPv2 Signing certificate type.

To map a certificate definition policy to the CMPv2 Signing certificate type

  1. Log in to Entrust Certificate Authority Administration or Security Manager Administration for the CA.
  2. In the tree view, expand Security Policy > Certificate Categories > Enterprise > CMPv2 Signing > Verification_p10.
  3. In the Certificate definition Policy drop-down list, select Verification_p10 Policy.
  4. Click Apply.
  5. If prompted, authorize the operation.

Mapping to the CMPv2 Signing and Encryption certificate type

See below to map an Entrust Certificate Authority certificate definition policy to the CMPv2 Signing and Encryption certificate type.

To map a certificate definition policy to the CMPv2 Signing and Encryption certificate type

  1. Log in to Entrust Certificate Authority Administration or Security Manager Administration for the CA.
  2. In the tree view, expand Security Policy > Certificate Categories > Enterprise > CMPv2 Signing and Encryption > Dual Usage.
  3. In the Certificate definition Policy drop-down list, select Dual Usage Policy.
  4. Click Apply.
  5. If prompted, authorize the operation.

Mapping to the CMPv2 Signing and Nonrepudiation certificate type

See below to map an Entrust Certificate Authority certificate definition policy to the CMPv2 Signing and Nonrepudiation certificate type.

To map a certificate definition policy to the CMPv2 Signing and Nonrepudation certificate type

  1. Log in to Entrust Certificate Authority Administration or Security Manager Administration for the CA.
  2. In the tree view, expand Security Policy > Certificate Categories > Enterprise > CMPv2 Signing and Nonrepudiation > Nonrepudiation.
  3. In the Certificate definition Policy drop-down list, select Nonrepudiation Policy.
  4. Click Apply.
  5. If prompted, authorize the operation.