Help Center> Cloud Certificate & Manager> Getting Started> Applying for a Private Certificate> Step 3: Activating a Private CA
View PDF

Step 3: Activating a Private CA

You need to active a subordinate CA after it is created.

The system provides two methods of activating private CAs: using internal private CAs or external private CAs. This section describes how to activate private CAs using internal private CAs. For details about how to activate private CAs using external private CAs, see Activating a Private CA.

Prerequisites

  • You have created a subordinate CA.
  • The subordinate CA is in the Pending activation state.

Procedure

  1. Log in to the management console.
  2. In the navigation pane on the left, click and choose Cloud Certificate Management Service under Security & Compliance. On the displayed CCM homepage, choose CA Management > Private CA.
  3. Locate the row of the subordinate CA and click Activate in the Operation column. In the Install CA Certificate and Activate CA page, configure the required parameters.

    Figure 1 Internal private CA
    1. Configure Issued From.

      Select Internal private CA.

    2. Configure the required parameters.
      Table 1 Parameters

      Parameter

      Description

      Common Name

      Indicates the name of the CA. The CA can be a root CA or a subordinate CA.

      After you select the CA, the system automatically displays the type and ID of the CA.

      Signature Algorithm

      Indicates the signature algorithm. The values can be:

      • SHA256
      • SHA384
      • SHA512

      Validity Period

      Indicates the validity period of a private CA. The longest period is 20 years.

      Path Length

      Indicates the path length of the subordinate CA. That is, the number of layers of CA certificates that can be issued by the current CA. This parameter can be used to control the certificate chain length.

  4. Confirm the configuration and click OK.

Follow-up Procedure

After a subordinate CA is activated, it can be used to issue private certificates. For details about how to apply for a private certificate, see Step 4: Applying for a Private Certificate.