Versions Compared

Old Version 58

changes.mady.by.user Kent Engström

Saved on

compared with

New Version 59

changes.mady.by.user Kent Engström

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • Have the person who will become the first Enterprise Admin for your organization to go https://cm.harica.gr and sign up to create a user.
    • The person should have been a RAO (not only DRAO) in the Sectigo CM. Choose the most senior RAO you had that will work with the new system too.
    • Yes, person means person. We will not hand out the role as first enterprise admin to a shared/functional email address or similar.
    • You should use the same email address as before if at all possible. The email address must belong to your main domain (the one you will tell us about below).
    • 2025-01-11: The given name and surname fields do not accept characters like "åäö" or "-". Do your best without this until we get this fixed.
    • 2025-01-10: Sign up for a new account. Do not yet try the the Academic Login option to login using your SWAMID user. We will tell you when that option is working properly.
  • This user must also enable two-factor authentication (TOTP) using the profile page (available from the menu in the top right corner where your name is displayed, select Profile, then under Two-Factor Authentication (2FA).

...

  • First, have the administrator-to-be create a user in the system (see above).
  • The user must then also enable two-factor authentication (TOTP) using the profile page (available from the menu in the top right corner where the name is displayed, select Profile, then under Two-Factor Authentication (2FA).

...

2025-10-13: If the choices you make does to seem to "take" when you look at the Account info again right after saving, exit the Users pane for something else and go back and check again. The information should now be correct.

Resetting Two-Factor Authentication (TOTP)

To reset the two-factor authentication for yourself, if you can still login via the old two-factor, go to the menu in the top right corner where the name is displayed, select Profile and then under Two-Factor Authentication (2FA) first Disable and then Enable again.

To reset the two-factor for another user, have one of your Enterprise Administrators go to the Account Info pane for the user (as above under Administrator Roles) and use the Disable button for Two-Factor Authentication (2FA). The user will then have to login and enable two-factor authentication again (using the menu in the top right corner where the name is displayed, select Profile and then under Two-Factor Authentication (2FA) use Enable).

If you are the only Enterprise Admin in your Enterprise and you ned to reset the two-factor authentication for yourself and you cannot login via the old two-factor, you need to contact tcs@sunet.se for help.

Roles will be lost! When the two-factor authentication is disabled for a user (by any of the means above), all roles that user has is removed and has to be added back again by an Enterprise Administrator. We recommend that you have at least two Enterprise Administrators so one of you can reinstate the other if they need to reset their two-factor authentication. Having more than one Enterprise Administrator is of course also a good idea for general operational redundancy.

Requesting certificates

All certificate requests are done with menu options in the left-side menu of the system.

...