Help banner

User Certificate Property Page

This page allows you to manage the properties of the user certificates that belong to the specified user. By clicking on a certificate nickname, you can view the details of the user certificate.

User Selection
Use the Object Selector button next to the user name to select a different user, if needed.

New
Click New to begin the user certificate creation wizard. This wizard will walk you through the steps of creating a new user certificate.

Delete
Clicking this button deletes the selected certificate and, if located in the eDirectory tree, the associated private key. You must be an administrator or have administrator rights to delete a user certificate. Once you delete a user certificate, you cannot recover any information that was encrypted using the public key that was in the user certificate. Signatures made using the private key associated with the deleted user certificate remain valid, but you should keep a copy of the user certificate and signed data as proof of the signature's validity.

Export
This button opens a new dialog box that allows you to export the public key certificate in DER or Base64 format, or the public key certificate, certificate chain, and private key in PKCS #12 (PFX) format.

Revoke
Use Revoke if you want to retain the certificate in eDirectory but do not want the certificate to be used. Select a certificate and click Revoke to start the Revoke Certificate wizard.

Validate and Certificate Status
There are two ways to check the validity of a certificate. You can select the certificate you want to validate, then click Validate from the menu options or you can click Validate next to the certificate nickname. Either option starts a validation test on the certificate that checks to see if the certificate, and all certificates in its certificate chain, are valid. The validation test reports the status and a reason, if applicable. The status then appears in the Certificate status field.

The validation test can return one of two values:

To see a list of reasons why a certificate may be invalid, click here.

A trademark symbol (®, TM, etc.) denotes a Novell trademark. An asterisk (*) denotes a third-party trademark. For information on trademarks, see Legal Notices.