Skip to content

Defining recommended settings for an Issuing Template

Recommended Settings allow you to provide guidance to your Resource Owners when they create certificate requests using a particular Issuing Template. This helps eliminate guess work and saves time by providing the settings ahead of time.


Recommended settings are just that -- recommendations. If you want to require a specific value or set of values that Resource Owner must use for certificate requests, use issuing rules instead.


You must be a System Administrator or PKI Administrator to do this.

  1. In the menu bar, click Settings > Issuing Templates.

  2. Click New if you're creating a new issuing template,


    In the template list, click the name of the template to which you want to add recommended settings.

  3. Click Define Recommended Settings.

    Fields where issuing template recommended settings are defined

  4. Fill out each field with settings recommended for the issuing template.

    • Common Name and Subject Alternative Name are regular expressions. One or more regular expressions are permitted for these fields.
    • Key Type can contain only a single type.
    • Key Length can contain only a single value.
    • Private Key Reuse can be turned off or on.
  5. When you're done, click Save.

    The Issuing Template reflects the settings you defined.

Last update: November 16, 2021