Re-ennrollment Certificates

Auto Re-enrollment automatically re-enrolls certificates with zero manual intervention. The system remembers how each certificate was originally created, matches it with the policy configured in the policy engine, and uses the result to re-enroll the certificate.

When a certificate reaches its re-enrollment threshold (typically 30 days before expiry), the Auto Re-enrollment Engine identifies the correct policy and template configured, then executes the re-enrollment automatically.

Re-ennrollment a Server Certificate

  1. Go to (Menu) > CLM > CERTIFICATE INVENTORY > Server.
    The Server Certificate page is displayed.
  2. To regenerate a certificate,under Common Name, select the required certificate name.
    The certificate topology view for the selected certificate is displayed.
  3. From the (More) menu for the certificate, click Re-enroll.
    The Server Certificate > Certificate Re-enrollment page is displayed.
  4. On the Server Certificate > Certificate Re-enrollment page, modify the required details in the certificate parameters section.
    Field Description
    Organization Enter name of the organization.
    Organization Unit Enter number of unit.
    Locality Enter organization's locality.
    Street Address Enter organization's street address.
    State Enter organization's state.
    Country Enter organization's country.
    Postal Code Enter organization's postal code.
    Email Enter organization's email id.
    Key Type* Select the key type.
    Bit Length* Select the bit length.
    Hash Function* Select the hash function key.
    Validity Unit* Select the validity unit.
    Validity in Days* Enter the validity in days.
    (*) symbol are mandatory.
  5. Click Submit.
    Pop-up message appears as Certificate Re-enrollment initiated successfully.

Re-ennrollment a Client Certificate

  1. Go to (Menu) > CLM > CERTIFICATE INVENTORY > Client.
    The Client Certificate page is displayed.
  2. To regenerate a certificate,under Common Name, select the required certificate name.
    The certificate topology view for the selected certificate is displayed.
  3. From the (More) menu for the certificate, click Re-enroll.
    The Client Certificate > Certificate Re-enrollment page is displayed.
  4. On the Client Certificate > Certificate Re-enrollment page, modify the required details in the certificate parameters section.
    Field Description
    Organization Enter name of the organization.
    Organization Unit Enter number of unit.
    Locality Enter organization's locality.
    Street Address Enter organization's street address.
    State Enter organization's state.
    Country Enter organization's country.
    Postal Code Enter organization's postal code.
    Email Enter organization's email id.
    Key Type* Select the key type.
    Bit Length* Select the bit length.
    Hash Function* Select the hash function key.
    Validity Unit* Select the validity unit.
    Validity in Days* Enter the validity in days.
    (*) symbol are mandatory.
  5. Click Submit.
    Pop-up message appears as Certificate Re-enrollment initiated successfully.

Re-ennrollment a Code Sigining Certificate

  1. Go to (Menu) > CLM > CERTIFICATE INVENTORY > Code Sigining Certificate.
    The Code Sigining Certificate page is displayed.
  2. To regenerate a certificate,under Common Name, select the required certificate name.
    The certificate topology view for the selected certificate is displayed.
  3. From the (More) menu for the certificate, click Re-enroll.
    The Code Sigining Certificate > Certificate Re-enrollment page is displayed.
  4. On the Code Sigining Certificate > Certificate Re-enrollment page, modify the required details in the certificate parameters section.
    Field Description
    Organization Enter name of the organization.
    Organization Unit Enter number of unit.
    Locality Enter organization's locality.
    Street Address Enter organization's street address.
    State Enter organization's state.
    Country Enter organization's country.
    Postal Code Enter organization's postal code.
    Email Enter organization's email id.
    Key Type* Select the key type.
    Bit Length* Select the bit length.
    Hash Function* Select the hash function key.
    Validity Unit* Select the validity unit.
    Validity in Days* Enter the validity in days.
    (*) symbol are mandatory.
  5. Click Submit.
    Pop-up message appears as Certificate Re-enrollment initiated successfully.