Certificate routing policy form table

  • Release version: Australia
  • Updated May 25, 2026
  • 2 minutes to read

    • To automate the processes of your certificate life cycle, you must fill out a routing policy form that populates your Certificate Signing Requests. This table shows you the required fields and values.

    Table 1. Fields for a Certificate Routing Policy Form
    Field Description
    Name Name of your routing policy.
    Certificate Authority Certificate authority. To see a list of supported Certificate Authorities, select the search icon. Choose EJBCA ACME.
    Note:
    The certificate authority determines if additional fields are necessary for your routing policy. Fill in this field first, to see what information you need for this form.
    Environment The environment that you want your certificate for. Options are:
    • Development
    • Disaster recovery
    • Production
    • Sub-Production
    .
    Assignment Group Assignment group. You can select an assignment group or make a new one.
    DNS Challenge Action Domain name system challenge action.
    Credential Alias Credential alias. Your options are based on the aliases that you create in the Certificate Management Credentials form.
    Vault Type External vault provider to use for private key storage with this routing policy. Options include HashiCorp Vault. When set, the system stores private keys in the specified vault during automated certificate operations (new request, renew, revoke) instead of on the MID Server.
    Certification Purpose Certification Purpose. Options are:
    • Internal
    • External
    Is Active Option to activate the policy.
    Allow Duplicate Request Option to allow multiple requests to receive multiple certificates.
    Approval Required Option to require approval.
    Task Approval Group Task approval group. This field appears only when the Approval Required field is activated.
    DNS Task Assignment Group DNS Task Assignment Group. Select Certificate Inventory and Management.
    Domain Domain of the policy. This field is automatically set to global.
    MID Server MID Server you want to use.
    Subject Common Name Specific entity or domain name that the certificate is issued to. Enter a name or *.
    Subject Alternative Name Domain or subdomain included in the Subject Common Name. Enter an alternative name or *.
    Organization Organization making the certificate signing request for the given Subject Common Name. Enter the organization or *.
    Locality Locality (city) of the organization making the certificate signing request for the given Subject Common Name. Enter the locality or *.
    Country Country of the organization making the certificate signing request for the given Subject Common Name. Enter the country or *.
    Organizational Unit Organizational unit making the certificate signing request for the given Subject Common Name. Enter the unit or *.
    State State of the organization making the certificate signing request for the given Subject Common Name. Enter the state or *.
    Email Address Email address of the administrator in the organization making the certificate signing request for the given Subject Common Name. Enter an email address or *.