Nexus Certificate Manager PKI

A certificate procedure and a token procedure should be created.

An authentication certificate should be issued for Horizon, and it should be given certificate issuance and revocation permissions on the aforementioned token procedure.

Nexus Endpoint CA

Only the following fields are managed: commonName, UID, OU, O, C and subjectAltNames DNS, IPaddress, RFC822Name and msUPN.

For multi-valued fields (SAN DNS, RFC822Name and IP address), if more data items are provided than configured in Nexus CM Procedure, the exceeding items will be ignored.

All limitations induced by the use of the Nexus CM SDK.

Connector Name* (string input):
Choose a meaningful connector name allowing to identify the mapping between the PKI and the Certificate Profile. It must be unique and must not contain spaces.

Proxy (string select):
If the PKI is not directly reachable from Horizon, you can set up an HTTP/HTTPS proxy to properly forward the traffic.

Queue PKI (string select):
The PKI Queue used to manage the PKI Requests (enrollment, revocation).

Timeout (finite duration):
Represents a predefined interval of time without a PKI response, when the time has passed "Horizon" will cease trying to establish the communication. Must be in valid finite duration.

Nexus CM DNS name* (string input):
URL to access the Nexus Certificate Manager.

Nexus endpoint CA* (select):
Select the endpoint CA.

Nexus CM Certificate procedure name* (string input):
The token procedure name to use.
Should point to the appropriate certificate procedure, and must be on PKCS#10 format.

Authentication PKCS#12* (import p12):
Import the PKCS#12 file containing the authentication certificate used to connect to the PKI.

PKCS#12 Password* (string input):
Enter the password used to secure the aforementioned PKCS#12.