TLS Certificate Template
This template is used by EA to request certificates on behalf of your AMT devices. These certificates will be installed into the AMT device firmware and used for traffic authentication.
Create AMT TLS Certificate Template¶
-
On your Enterprise Subordinate CA server, open the Start menu.
-
Choose Run, then enter
certtmpl.msc
. -
Right-click the certificate template named Web Server and choose Duplicate.
-
Right-click and rename the new template AMT TLS Certificate.
-
Right-click the template and open the Properties menu.
-
Navigate to the Request Handling tab, and check the box labeled Allow private key to be exported.
-
Navigate to the Subject Name tab, and ensure that the radio button Supply in the request is selected.
-
Click OK to save the template.
Enable the Template¶
-
On the Enterprise Subordinate CA server, run the Certification Authority tool.
-
Navigate to the Certificate Templates folder on the left pane.
-
Right-click the Certificate Templates folder and choose New -> Certificate Template to Issue.
-
Choose the AMT TLS Certificate template.
-
Click OK.
Select the Template in Enterprise Assistant¶
When configuring the Settings menu of Enterprise Assistant, choose the AMT TLS Certificate from the TLS Template drop down menu under Certificate Authority.
Example - Configured TLS Template in Settings