FISId PKI

Create the PKI connector

1. Log in to Horizon Administration Interface.

2. Access PKI from the drawer or card: PKI  PKI Connectors.

3. Click on Add icon.

4. Select the correct PKI type.

5. Click on the next button

General tab

6. Fill in the common mandatory fields:

  • Connector Name* (string input):
    Choose a meaningful connector name allowing to identify the mapping between the PKI and the Certificate Profile. It must be unique and must not contain spaces.

  • Proxy (string select):
    If the PKI is not directly reachable from Horizon, you can set up an HTTP/HTTPS proxy to properly forward the traffic.

  • PKI Queue (string select):
    The PKI Queue used to manage the PKI Requests (enrollment, revocation).

  • Timeout (finite duration):
    Represents a predefined interval of time without a PKI response, when the time has passed "Horizon" will cease trying to establish the communication. Must be a valid finite duration.

7. Click on the next button

Details tab

8. Fill in all mandatory fields:

  • FISId endpoint URL* (string input):
    URL to access the API.

  • Template ID* (int):
    Enter the template ID.

  • Default owner ID* (string input):
    Enter a default owner ID.

  • Authentication domain ID* (int):
    Enter an authentication domain ID.

  • Owner groups (string input):
    Enter one or several, separated by commas

  • To delete after revocation (boolean):
    The default value is set to false.

9. Click on the next button.

Authentication tab

10. Fill in the PKI-authentication fields:

  • API Key* (select):
    Select API Token credentials containing the API Key.

11. Click on the save button.

You can edit Edit PKI, duplicate Duplicate PKI or delete Delete PKI the FISId PKI connector.