Certification Configuration dialog box

Use the options in this dialog box to configure the used certificate.

Option	Description
Use Windows’ Certificate Store	Set when using the Windows Certificate Store. The following options are available: System Store - the predefined system stores are: MY Root Trust CA Certificate Item - Existing certificates are listed based on selected system store location. View - Click this button to view the info of the certificate.
Use File-Certificate	Set when using a file certificate. Available options: Selected Certificate File Path - Display the path of the certificate file. This field is read-only. Password - If the selected certificate has a password, it is masked. Browse - Click this button to browse to an exist certificate (.pfx or .p12). The Enter Access Password dialog box is displayed to ask password if needed.
Generate Self-Certificate at Runtime	Set when generating the certificate during runtime. Available options: Signature - Signature and hash algorithm. This field is required. The following algorithms are supported: md5 sha1 sha2 Crypto Block - Fixed-length groups of bits. This field is required. The following block sizes are supported: 1024 2048 4096 Key Usage - Key usage fixed to Server Authentication (1.3.6.1.5.5.7.3.1). This field is required. Start - Start date of validity. This field is required. End - End date of validity. This field is required. Serial - A string that uniquely identifies the certificate and is issued by the certification authority. DNS - Also Subject Alternative Name. It supports the ability to specify different domains protected by a single SSL certificate. This field is optional. Country - Business Location – Country. This field is required. State - Business Location - State/Province. This field is required. Locality - Business Location - City. This field is required Organization - Legal business name of the organization. This field is required. Unit - Organizational Unit Name; for example, HR, Finance, IT. This field is required. Common Name - Domain to be secured by the certificate. This field is required. Surname - Surname of person to contact at the organization. This field is optional. Given Name - Given name of person to contact at the organization. This field is optional. Email - An email address to contact the organization. Usually the email address of the certificate administrator or IT department. This field is required. Issuer Name - Name of organization that issues the certificate. Export - Click this button to create a certificate (.pfx or .p12) based on the above information. The Enter Access Password dialog box will be opened to specify a password for the newly created certificate. Ensure that the Mark this key as exportable button is checked in the Certificate Import Wizard, to allow AutoStore to access certificates in the system store during runtime.

Option

Description

Use Windows’ Certificate Store

Set when using the Windows Certificate Store. The following options are available:

System Store - the predefined system stores are:
- MY
- Root
- Trust
- CA
Certificate Item - Existing certificates are listed based on selected system store location.
View - Click this button to view the info of the certificate.

Use File-Certificate

Set when using a file certificate. Available options:

Selected Certificate File Path - Display the path of the certificate file. This field is read-only.
Password - If the selected certificate has a password, it is masked.
Browse - Click this button to browse to an exist certificate (.pfx or .p12). The Enter Access Password dialog box is displayed to ask password if needed.

Generate Self-Certificate at Runtime

Set when generating the certificate during runtime. Available options:

Signature - Signature and hash algorithm. This field is required. The following algorithms are supported:
- md5
- sha1
- sha2
Crypto Block - Fixed-length groups of bits. This field is required. The following block sizes are supported:
- 1024
- 2048
- 4096
Key Usage - Key usage fixed to Server Authentication (1.3.6.1.5.5.7.3.1). This field is required.
Start - Start date of validity. This field is required.
End - End date of validity. This field is required.
Serial - A string that uniquely identifies the certificate and is issued by the certification authority.
DNS - Also Subject Alternative Name. It supports the ability to specify different domains protected by a single SSL certificate. This field is optional.
Country - Business Location – Country. This field is required.
State - Business Location - State/Province. This field is required.
Locality - Business Location - City. This field is required
Organization - Legal business name of the organization. This field is required.
Unit - Organizational Unit Name; for example, HR, Finance, IT. This field is required.
Common Name - Domain to be secured by the certificate. This field is required.
Surname - Surname of person to contact at the organization. This field is optional.
Given Name - Given name of person to contact at the organization. This field is optional.
Email - An email address to contact the organization. Usually the email address of the certificate administrator or IT department. This field is required.
Issuer Name - Name of organization that issues the certificate.
Export - Click this button to create a certificate (.pfx or .p12) based on the above information. The Enter Access Password dialog box will be opened to specify a password for the newly created certificate.

Ensure that the Mark this key as exportable button is checked in the Certificate Import Wizard, to allow AutoStore to access certificates in the system store during runtime.