Validating a Certificate

This topic describes the procedure for validating a digital certificate.

Certificates must be validated before they are used. Digital certificates can be revoked if it is compromised. Certificates can expire too. In such cases, the certificates are no longer valid. You can also validate if the certificate is meant for a certain purpose. For example, certificates used for signing applications must be validated to check if the Keyusage field in the certificate is 'code signing'.

1. On My Applications > CUSP , click (Security Administration). The Security Administration window appears and the Certificates tab is displayed by default.
   
2. Click link Certificate test tool on the top right of the table. The Validate Certificate dialog box appears.
   
3. Select the mode of the certificate from the Select Mode drop-down list. Select any of the following options:
   
   • Select Upload certificate to upload the certificate.
     
   • Select Paste base64 encoded certificate content to paste the contents of an existing certificate. If you select this option, then paste the certificate details in the Base64 encoded certificate text area and skip the next two steps.
     
4. In the Certificate Path text box, browse to the location of the certificate in your computer using the icon.
   
5. Select the type of key usage you want to validate for the certificate from the Keyusage option.
   
6. Select the type of extended key usage of the certificate from the Extended Keyusage option.
   
7. Click the Validate button to validate the certificate against the key usage or extended key usage options selected in the above steps.
   
   The validity status of the certificate is displayed in the Validation Status text area.
   
   Note: To clear the options selected in the Validate Certificate dialog box, click the Reset button.