Performing Identification and Authentication Functions

The CA performs verification of the RA by checking that the credentials supplied in the API request entitle the RA to issue certificates for the designated CA and that the designated CA has license capacity.

The identification and authentication of the Subscriber is performed by the RA.

Approval or Rejection of Certificate Applications

PKIaaS approves a Certificate application if the following conditions are met:

• Request is syntactically valid

• Proof of possession verification passes

• Customer has an available Certificate inventory to consume

Time to Process Certificate Applications

Certificate Application processing is the responsibility of the RA. The CA will respond to API requests with a Certificate or with an error as to why the Certificate was not issued.