EverTrust integrated CA

Create the PKI connector

1. Log in to Horizon Administration Interface.

2. Access PKI from the drawer or card: PKI > PKI Connectors.

3. Click on Add HTTP Proxy.

4. Select the correct PKI type.

5. Click on the next button

General tab

6. Fill in the common mandatory fields:

  • Connector Name* (string input):
    Choose a meaningful connector name allowing to identify the mapping between the PKI and the Certificate Profile. It must be unique and must not contain spaces.

  • Proxy (string select):
    If the PKI is not directly reachable from Horizon, you can set up an HTTP/HTTPS proxy to properly forward the traffic.

  • Queue PKI (string select):
    The PKI Queue used to manage the PKI Requests (enrollment, revocation).

  • Timeout (finite duration):
    Represents a predefined interval of time without a PKI response, when the time has passed "Horizon" will cease trying to establish the communication. Must be in valid finite duration.

7. Click on the next button

Details tab

8. Fill in all mandatory fields:

  • Certificate Type* (select):
    Specify the certificate type to issue.

  • Signing algorithm* (select):
    Specify the signing algorithm.

  • CA Certificate (string input):
    Enter CA certificate.

  • CA Key (string input):
    Enter CA key.

  • CRL save path (string input):
    Path to save the CRL on the Horizon server.

  • CRL lifetime (finite duration):
    CRL lifetime in days. Must be a valid finite duration.

  • Certificate Back Date (finite duration):
    Certificate Back Date. Must be a valid duration.

  • Check Proof of Possession (boolean)

9. Click on the save button.

You can edit Edit PKI, duplicate Duplicate PKI or delete Delete PKI the EverTrust integrated CA PKI connector.