CA EEM Release Notes › New Features › Support for Certificates in CA EEM C++ SDK

Support for Certificates in CA EEM C++ SDK

CA EEM C++ SDK supports P12, PEM, and PKCS#11 certificates.

Generate the certificates using the following methods:

• Safe::Certificate * Safe::Context::issueCertificate ( Safe::Error & ee )
• Safe::Certificate * Safe::Context::issueCertificateForSession ( Safe::Session * session, Safe::Error & ee)
• Safe::Certificate * Safe::Context::issueCertificateForUser ( Safe::User * user , Safe::Error & ee)

When the certificate is generated, write the certificate to PKCS#11, PEM, and P12 format using the following methods:

• static bool Safe::Context::writeToP11 (Safe::Certificate *certificate, const char *pkcs11lib, const char *token, const char *userpin, const char *id, bool sensitive, Safe::Error &se)
• static bool Safe::Context::writeToP12 (Safe::Certificate *certificate, const char *filename, const char *password, Safe::Error &se)
• static bool Safe::Context::writeToPEM (Safe::Certificate *certificate, const char *certfile, const char *keyfile, const char *password, Safe::Error &se)

Note: writeToPEM requires a password to protect the certificate. This argument is optional. For FIPS-only mode, the password must be blank.

When the certificate is stored, load the certificate from PKCS#11, PEM, and P12 format using the following methods:

• Safe::Certificate * Safe::Context::loadP11 (const char *pkcs11lib, const char *token, const char *userpin, const char *id, bool extractKey, Safe::Error &se)
• Safe::Certificate * Safe::Context::loadP12 (const char *p12file, const char *password, Safe::Error &se)
• Safe::Certificate * Safe::Context::loadPEM (const char *certfile, const char *keyfile, const char *password, Safe::Error &se)

Support for Certificates in CA EEM C# SDK

CA EEM C# SDK supports P12 and PEM certificates.

Note: CA EEM C# SDK does not support P11 certificates.

Generate the certificates using the following methods:

• ISafeCertificateData com.ca.eiam.SafeContext.issueCertificate ( )
• ISafeCertificateData com.ca.eiam.SafeContext.issueCertificateForSession ( SafeSession session )
• ISafeCertificateData com.ca.eiam.SafeContext.issueCertificateForUser ( SafeUser user )

When the certificate is generated, write the certificate to PEM and P12 format using the following method:

• static void com.ca.eiam.SafeCertificateWriter.WriteToP12 (ISafeCertificateData safecertdata, String certFilePath, String password)
• static void com.ca.eiam.SafeCertificateWriter.WriteToPem (ISafeCertificateData safecertdata, String certFilePath, String keyFilePath)

When the certificate is stored, read the certificate to PEM and P12 format using the following method:

• static ISafeCertificate SafeCertificateReader.LoadP12 (String certFile, String password)
• static ISafeCertificate SafeCertificateReader.LoadPEM (String certFile, String privKeyFile)

Support for Certificates in CA EEM Java SDK

CA EEM Java SDK supports P12, PKCS#11, and PEM certificates.

Generate the certificates using the following methods:

• public SafeCertificateData SafeContext.issueCertificate()
• public SafeCertificateData SafeContext.issueCertificateForSession(SafeSession session)
• public SafeCertificateData SafeContext.issueCertificateForUser(SafeUser user)

When the certificate is generated, write the certificate to PKCS#11, PEM, and P12 format using the following method:

• static void SafeCertificateWriter.writeToP11(SafeCertificateData certdata, java.lang.String provider, java.lang.String userpin, java.lang.String id)
• static void SafeCertificateWriter.writeToP12(SafeCertificateData certdata, java.lang.String p12file, java.lang.String password)
• static void SafeCertificateWriter.writeToPEM(SafeCertificateData certdata, java.lang.String certfile, java.lang.String keyfile)
  

When the certificate is created, read the certificate from PKCS#11, PEM, and P12 format using the following method:

• SafeCertificateData SafeCertificateReader.readP11(java.lang.String provider, java.lang.String userpin, java.lang.String id)
• SafeCertificateData SafeCertificateReader.readP12(java.lang.String p12file, java.lang.String passwd)
• SafeCertificateData SafeCertificateReader.readPEM(java.lang.String certfile, java.lang.String keyfile)