Page History

...

• Profiles include a number of categories such as Preferences, Permissions etc.
• The A profile includes settings used to configure JOC Cockpit as a Certificate Authority (CA) for JS7 - Secure Connections.
• A Certificate Authority set up by the SSL Key Management functionality allows to create Server Authentication Certificates and Client Authentication Certificates for TLS/SSL connections.

It is recommended to use an external Certificate Authority or to procure certificates from a trusted 3rd-party as the JOC Cockpit Certificate Authority cannot be considered secure:

• The JOC Cockpit Certificate Authority is applicable in absence of decent security requirements when operating JS7 for a Security Level Low or Medium, see JS7 - Security Architecture and JS7 - Secure Operation.
• Use of the JOC Cockpit Certificate Authority is not applicable when operating JS7 for the Security Level High as keys and certificates are stored with the JS7 - Database..

The SSL Key Management functionality is used when setting to set up up your own CA with JOC Cockpit, see JS7 - Certificate Authority - Manage Certificates with JOC Cockpit.

...

The Root CA private key and certificate can be created from an external CA and can be updated by pasting from the clipboard like this:

Note: JOC  For the Root CA JOC Cockpit supports ECDSA key algorithms only as RSA key algorithms are not considered secure for the future.

...

A Root CA private key is generated and is a self-signed certificate is created like this:

The requested Distinguished Name (DN) is a unique identifier for the certificate.

...