Functions

Certificate Authority Service Functions

Component	Function	Allows You To...
PKI Management	CertProfile	Configure a certificate profile to avoid repeated configurations when you create a CA and apply for certificates.
	CA	Create and manage CAs in certificate application scenarios.
	Certificate Management	Manage certificates, including certificate revocation, update, and download, and query of certificate details.
	CRL	View the information and status of all CRLs, and download, update, and manually release CRLs.
	Whitelist	Add, import, delete, and query a whitelist. A certificate can be successfully obtained only when the corresponding common name (CN) is whitelisted.
Protocol Configuration	CMP	Configure CMP. Integrity protection for request and response messages is required when you apply for a certificate using CMP.
Protocol Configuration	Privacy CA Protocol	Configure the privacy CA protocol information and EK trust certificate when applying for a certificate using the privacy CA protocol.
Certificate Application	Certificate Application	On the Certificate Application page, you can apply for a certificate in different modes as required.
Certificate Application	Application List	View the certificate application details.
Global Configuration	Port Management	View the current port status and manually enable or disable the HTTP port, TLS one-way authentication port, TLS two-way authentication port or privacy CA protocol port. NOTE: HTTPS is more secure than HTTP. Therefore, you are advised to select HTTPS (One-way authentication or Two-way authentication) when configuring CMP.
Global Configuration	TLS Configuration	Configure a TLS certificate to encrypt messages exchanged.
HSM Management		By configuring the Hardware Security Module (HSM), the certificate key will not appear in plaintext outside the device at any time, implementing more secure key management.