Configure domain controller certificates

Users of IDaaS with smart credentials who want to use Smart Card Login with PKI as a Service (PKIaaS) require a domain controller certificate to enable Smart Card Login. To use a domain controller, you need a Premium Account entitlement that allows PKIaaS CAs and a PKIaaS Certificate Authority (see Configure an Entrust Managed PKI CA).

Add a Domain Controller certificate

1. Log in to your Identity as a Service administrator account.
2. Click > Resources > Domain Controller Certificates. The Domain Controller Certificate List page appears.
3. Click . The Enroll Domain Controller dialog box appears.
4. Enter a Certificate Name.
5. Select the CA Name from the drop-down list.
6. Click and browse to upload the CSR file for your domain controller. Once the certificate uploads, the Enroll/Renew Domain Controller certificate dialog box appears for you to review the request to ensure that it is what you expect.
7. Click Save to enroll the certificate with PKIaaS.

Topics in this section

📄️Export a domain controller certificate

After you create a domain controller certificate, you need to export it and then upload it to your domain controller.

📄️Manage domain controller certificates

After you create a domain controller certificate, you can view, delete, renew, revoke, and put your certificate on hold.