Library items tagged: jcs

Anonymous
All Jisc services are governed by the Janet policies. This page contains instructions for: joining the Jisc Certificate Service how to request a certificate It also contains links to:
Once you have the appropriate certificate credit on your organisation's Certificate Service account, you can proceed and request the required S/MIME email certificate, by clicking on the 'Request Certificate' tab in the JCS portal. The following steps apply: Request Certificate 1. Is the certificate for a primary or secondary school? Note: S/MIME certificates are not available for school owned domains.
Once you have the appropriate certificate credit on your organisation's Certificate Service account, you can proceed and request the required S/MIME email certificate, by clicking on the 'Request Certificate' tab in the JCS portal. The following steps apply: Request Certificate 1. Is the certificate for a primary or secondary school? Note: S/MIME certificates are not available for school owned domains.
This section contains further information about how to request and obtain S/MIME certificates, and further help on how to install and configure S/MIME to work on users' email clients. S/MIME certificates, also called "Personal certificates", enable users to digitally sign emails and optionally to encrypt email messages. Sending a digitally signed email means the recipient is able to verify that the email has been sent from the sender's account. Digitally signing emails can therefore help reduce the chances of users falling foul to phishing attacks.
The Jisc's Certificate Service's Terms and Conditions (found here https://community.jisc.ac.uk/library/janet-services-documentation/jcs-terms-and-conditions) includes a Sub-Local Registration Authority agreement. This is an agreement between the organisation as a member of the Certificate Service and Jisc, which is required as part of the service supported by QuoVadis CA, as the Certificate Authority signing issued certificates.
If the private key of a SSL server certificate is lost or stolen the certificate must be revoked immediately. More commonly, all SSL certificates which are still valid but are no longer used or required must also be revoked by the Certificate Holder. Every Certificate Authority manages their own certificate revocation lists (CRL) which are published showing the SSL certificates that should no longer be trusted. This enables web browsers in turn to warn users that a certificates used to secure a particular web service cannot be trusted and therefore the user should not proceed.
If the private key of a SSL server certificate is lost or stolen the certificate must be revoked immediately. More commonly, all SSL certificates which are still valid but are no longer used or required must also be revoked by the Certificate Holder. Every Certificate Authority manages their own certificate revocation lists (CRL) which are published showing the SSL certificates that should no longer be trusted. This enables web browsers in turn to warn users that a certificates used to secure a particular web service cannot be trusted and therefore the user should not proceed.
Through the Certificate Service portal, organisations can manage their list of Authorised Users. Designated Management Contacts (MC) are now responsible for managing, and keeping up to date, the list of users authorised to request and obtain SSL certificates on behalf of their organisation. Every member of the JCS service will have at least one designated Management Contact, who can add, delete or delegate other verified users to MC status users within their organisation's JCS account.
To view all certificate credit bundles purchased by your organisations, click on the down-arrow next to the 'JCS Account' tab, and select 'View Purchases', as shown below.
To view all bundles of certificate credits that your organisation has obtained, you click on the down-arrow next to the 'JCS Account' tab, and select 'View Bundles', as shown below.