Table of Contents | ||
---|---|---|
|
Certificate makes access to Portal PLGrid and services more easier. It helps with user identification and gives access without login and password authentication. Certificate management is in Certyfikaty menu
Certificates are used to confirm users' identity within PLGrid Infrastructure. They allow access to some of PLGrid services without requiring user's login and password. Some applications or tools require a certificate.
You can manage your certificates in Certyfikaty menu.
Two types of certificates are recognized in PLGrid and can be managed in PLGrid portalAt PLGrid portal are two types of certificates:
Simple CA certificate is fullly managed at PLGrid portal. It can be issued, downloaded or revoked there.
You can generate your certificate using the "Wygeneruj certyfikat" button. You will be required to provide your PLGrid password, which becomes your certificate password as well. After providing the password click "Generuj".
After the certificate is generated, it is registered in PLGrid portal. You can download your certificate in p12 format (containing certificate and private key) by using the link "Zapisz certyfikat na dysku" issued by PLGrid Portal and needs additional authentication. Option "Wygeneruj certyfikat" generates a Simple CA. User must enter password set up during registration. User has to download a compress archived in p12 format which contains certificate and private key.
Info |
---|
Registration of certificate in PLGrid Portal causes it to save in:
In the future it will be possible to After this step User should see notification with location of Simple CA certificate. It saves as a keyFS and in Open ID and it can be used for auto-login to PLGrid's services .To use auto-login option User should install with the certificate (registration at web browser management will be required). |
There is a possibility to revoke a Simple CA certificate in PLGrid portal.
If your certificate has been compromised User you should revoke the current certificate and generate another one.
This is also an option for other circumstances like changing User's personalities or if User no longer needs that kind of authorization.
...