I'm working with SignServer and need to set up a Certificate Authority (CA) that can issue certificates for each signing worker without requiring a physical USB token. The certificates need to be recognized by Adobe, showing the signer's name but indicating that the approval comes from our organization via the SignServer CA.
For testing or if we don't have a CA in our organization, we can set up our own PKI using software like EJBCA or OpenSSL.
Could someone guide me on:
How to install and configure a CA that can issue certificates for each worker without the need for physical USB tokens?
Ensuring that these certificates are recognized by Adobe and display the signer's name while showing that the approval comes from our organization's CA.
Any detailed steps, best practices, or resources would be greatly appreciated.
Thank you!
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Hello everyone,
I'm working with SignServer and need to set up a Certificate Authority (CA) that can issue certificates for each signing worker without requiring a physical USB token. The certificates need to be recognized by Adobe, showing the signer's name but indicating that the approval comes from our organization via the SignServer CA.
For testing or if we don't have a CA in our organization, we can set up our own PKI using software like EJBCA or OpenSSL.
Could someone guide me on:
How to install and configure a CA that can issue certificates for each worker without the need for physical USB tokens?
Ensuring that these certificates are recognized by Adobe and display the signer's name while showing that the approval comes from our organization's CA.
Any detailed steps, best practices, or resources would be greatly appreciated.
Thank you!
Hi Nicolas,
SignServer discussions moved to https://github.com/Keyfactor/signserver-ce/discussions.
Cheers,
Markus