Canon imageFORMULA ScanFront 400 CAC/PIV ScanFront 400 CAC/PIV Configuration G - Page 53

4. Click [OK]. The uploaded certificate is displayed in the Trusted Certificate Store list. To delete a certificate, select the check box next to the certificate ➞ click [Delete Selected] ➞ [OK]. To view the details of a certificate or download it, click the [View] icon next to the certificate ➞ click [Close] or [Download]. IMPORTANT • Always make sure to upload the most current DoD root and intermediate CA's certificates. If a DoD root or intermediate CA's certificate expires, is revoked, or if new nodes or certificates are introduced and are not uploaded, user authentication will fail. • Trusted certificates can be uploaded in plain text and Base64 encoded formats as .cer, .zip, and PKCS7 files. • Trusted certificates installed in the Certificates screen are used for the following CAC/PIV functions: - OCSP revocation check or validation of signer or recipient certificates - OCSP revocation check or validation of KDC certificates - OCSP revocation check or validation of card certificates - OCSP revocation check or validation of SSL certificates when communicating with LDAP or SMTP servers. • Trusted certificates installed via ScanFront 400 CAC/PIV Administrator Settings certificates are used for the following non-CAC/PIV functions: - Validation of an SSL certificate when communicating with an SMTP server (SMTPS or STARTTLS) for E-mail Scan Destinations and 'No email Security'. - Validation of an SSL certificate when using FTP scan destinations and FTPS or SFTP. 53 ScanFront 400 CAC/PIV V1.3.1 Configuration Guide