Version: Next

User PIN configuration

Starting from version 4.30, Redtrust introduces the user PIN as an extra layer of security to help prevent unauthorized certificate usage. The user PIN is exclusive to an individual user and can be used with one or multiple certificates. In addition to the user PIN, Redtrust offerS the possibility to add a certificate PIN, which serves a different purpose. The certificate PIN is tied to a specific certificate and can be shared among users.

You can manage the user PIN configuration through the certificate and policy settings. Although the specific options are described in their respective sections, the tables below provide a summary of the logic behind them. This information is relevant to administrators configuring certificates.

Certificates without certificate PIN will follow this logic depending on the user PIN configuration.

Certificates with a certificate PIN configured will follow this logic depending on the user PIN configuration.

In summary, the configuration of the policy supersedes the certificate configuration unless you force the certificate settings.

important

Whenever possible, users should rely on their individual user PIN to ensure better access control and reduce the risk of unauthorized use.

note

For information on setting up the user PIN, check How to set up and change the user PIN.