|
For the latest version, please use Certificate Lifecycle Manager 6.8.1! |
PCSP Certificate Provider
With the Public Certificate Service Platform (PCSP), Deutsche Telekom Security GmbH offers a public key infrastructure (PKI) service that enables customers to apply for and issue various public certificates for a wide range of use cases.
Below you will find which parameters are required for the creation of a PCSP certificate provider.
| Parameter | Description |
|---|---|
API URL |
URL to access the PCSP API |
API Key Identifier |
Your unique identifier used for authentication purposes |
API Secret |
Confidential piece of information used in conjunction with your API key identifier to authenticate and authorize Access to the PCSP API |
DNS Validation
MTG CLM supports DNS TXT validation for configured PCSP products. This validation method requires creating DNS TXT records for your domain, to prove domain ownership. DNS TXT validation enables certificate issuance for wildcard domains and scenarios where HTTP-based validation cannot be performed.
| Domain validation and other validations are performed outside the CLM platform. CLM serves solely to request the certificate. For a successful certificate request, the requirements regarding validation must be met. |