Certification Authority

Overview

The Certification Authority establishes an internal CA within the system to issue, distribute, and manage X.509 certificates for mutual TLS (mTLS) communication and strong identification between devices, users, and internal services.

• CSR create and LocalCA root signature issuance

• Certificate Revoke

• View issued certificate list

• Support for mutual authentication (EAP-TLS, mTLS) via issued certificates

List/Column Description

The Certificate Service list screen provides the following information:

• Common Name: Subject Distinguished Name (CN) of the certificate

• Serial Number: Certificate serial number (unique identifier)

• Authority Key: Authority Key Identifier (AKI)

• CA Label: Indicated if the certificate is a CA

• Status: Current status of the certificate (Valid/Revoked)

• Registered: Time when it was registered (saved) in the system

• Not After: Date when the certificate was signed and issued

• Not Before: Scheduled expiration date of the certificate