Add a New Application Trust Certificate

An application trust assigns a chosen administrator's identity to a custom application. This allows the custom application to perform administrative tasks on RSA Authentication Manager under the chosen administrator's identity.

For more information, see “Enabling a Custom Application to Invoke RSA Authentication Manager Administrative Functions” in the Developer’s Guide.

This procedure is part of the process of setting up an application trust. Perform this procedure to upload a certificate signing request for a certificate designated for client authentication.

Before you begin

  • You must be an Operations Console administrator and a Super Admin.

  • Add a new user and assign the user to an administrative role for the custom application. For instructions, see “Configuring Two-Way SSL with Application Trust” in the Developer’s Guide.

  • Generate keys and a certificate signing request for a certificate designated for client authentication using a certificate management utility of your choice, for example, the Java Keytool. For instructions, see “Create the Application Trust” in the Developer’s Guide.


  1. In the Operations Console, click Deployment Configuration > Certificates > Application Trust Certificates > Add New.

  2. When prompted, enter your Super Admin User ID and password.

  3. Under Certificate Basics, do the following:

    • For Certificate Name, enter a unique name from 1 to 255 characters in length.

    • For Administrative Account, enter the account for the user acting on behalf of the custom application for all administrative actions.

    • For Import Certificate Signing Request, navigate to the location of the certificate signing request that you will upload. The file must be encoded in DER, BER, or PEM format, and created with the RSA key algorithm.

  4. Click Save.

After you finish

Download an Application Trust Certificate