Certificate enrollment procedures

These procedures describe certificate enrollment of a YubiKey without any extra input criteria, for example, no signature or identification. Net iD Portal supports different ways to configure an enrollment flow to suit your organization.

Enroll primary YubiKey

  1. Insert the YubiKey in the USB port. Under Check token, the YubiKey information is automatically shown.

  2. On the Users tab, search for the user you want to enroll a certificate to and go to the user’s profile.
    image

  3. Click Manage  Enroll primary YubiKey.

  4. In the Token template list, click the token template to be used for the enrollment, and then click Execute.

  5. In the New password (PIN1) box, type a new PIN for the authentication and signature certificates.

  6. The officer signs the enrollment.

  7. The certificates are created and written to the YubiKey.

  8. Under Active tokens, on the user profile, the YubiKey is now listed.

  9. Click Manage  View on the YubiKey row to see the certificates on the YubiKey.

  10. Click Show on the YubiKey to see information about the certificates.