Download an Application Trust Certificate

An application trust assigns a chosen administrator's identity to a custom application. This allows the custom application to perform administrative tasks on RSA Authentication Manager under the chosen administrator's identity.

For more information, see “Enabling a Custom Application to Invoke RSA Authentication Manager Administrative Functions” in the Developer’s Guide.

This procedure is part of the process of setting up an application trust. Perform this procedure to download a signed application trust certificate and the signing root certificate to make them available to use with a custom application.

Before you begin

  • You must be an Operations Console administrator and a Super Admin.

  • Create a certificate signing request (CSR) for a certificate designated for client authentication, and upload the CSR using the Operations Console. For instructions, see “Create the Application Trust” in the Developer’s Guide.


  1. In the Operations Console, click Deployment Configuration > Certificates > Application Trust Certificates > Manage Existing.

  2. Under Friendly Name, click the name of the signed application trust certificate that you want to download.

  3. From the context menu, select Download.

  4. Under Download Files, do the following:

    • Under The application trust certificate is ready to download, click Download Now > OK.

    • Under The root CA certificate is ready to download, click Download Now > OK.

  5. Click Done.

After you finish

Configure the system environment settings for running two-way secure sockets layer using the keystore filename, alias, keystore password, and private key password you specified when you generated the keys and a certificate signing request for the application trust certificate.

For instructions, see “System Environment Settings for Two-Way Secure Sockets Layer (SSL)” in the Developer’s Guide.