Common certificates
A common certificate is issued by a third-party CA and shared among multiple users. Axidian CertiFlow allows you to write common certificates and their private keys to multiple users' cards at the same time.
You cannot suspend or revoke common certificates, but you can update them: delete the old PFX file and add a new one. Common certificates cannot be published to a user catalog, file storage, or user certificate store.
Add a common certificate
To add a common certificate to Axidian CertiFlow:
- Open policy settings and go to PKI settings → Common certificates.
- Click Add common certificate and select the required PFX file.
- Enter the password to access file contents.
- (Optional) To configure a permission to write common certificates to cards, enable the Optional certificate option.
If the Optional certificate option is not enabled, the common certificate is considered mandatory and is written to the card during issuance or update. - Click Add.
Configure common certificates expiration alerts
To send notifications about common certificates expiration:
- Open policy settings and go to Notifications.
- Create a notification for the Common certificates expiring event.
Notifications are not sent for certificates that have already expired.