#
# =====================================================================
#
# Template Name - 4-Year Identrus EE Identity Software Consumer Type 2 Certificate
#
# Function - Creates a 4-year browser certificate for use within
# the Identrus infrastructure. This certificate is used
# to sign communications between the Subscribing Customer (SC)
# and Relying Customer (RC) and for S/MIME Digital Signature.
#
# =====================================================================
#
<TEMPLATE NAME=4-Year Identrus EE Identity Software Consumer Type 2
Certificate>
<TEMPLATE NAME=PKI Browser Certificate>
<NICKNAME=4YIEEIC2>
<CONTENT>
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN""http://www.w3.org/TR/html4/loose.dtd">
<HTML lang="en"><HEAD>
<TITLE> Web Based PKIX Certificate Generation Application Pg 2</TITLE>
%%-copyright%%
%%-AdditionalHead[browsertype]%%
</HEAD>
<BODY>
<H1>4-Year Identrus EE Identity Software Consumer Type 2 Certificate</H1>
<p>
<H2>Choose one of the following:</H2>
<p>
<ul>
<h3><li>Request a New Certificate</h3>
# This ACTION forces userid/pw authentication and runs the task under
# the client's ID
#<FORM NAME="CertReq" METHOD=POST ACTION=
# "/[application]/ssl-cgi-bin/auth/careq.rexx" onSubmit=
# This ACTION forces userid/pw authentication but runs the task under
# the surrogate ID
#<FORM NAME="CertReq" METHOD=POST ACTION=
# "/[application]/ssl-cgi-bin/surrogateauth/careq.rexx" onSubmit=
# This ACTION is for non z/OS clients. The task runs under the
# surrogate ID
<FORM NAME="CertReq" METHOD=POST ACTION=
"/[application]/ssl-cgi-bin/careq.rexx" onSubmit=
"return ValidateEntry(this)">
<INPUT NAME="Template" TYPE="hidden" VALUE="[tmplname]">
<p> Enter values for the following field(s)
#-- User input fields and validation Javascript ---------------
<SCRIPT LANGUAGE="JavaScript">
<!--
function ValidateEntry(frm){
if (ValidRequestor(frm) &&
ValidCommonName(frm) &&
ValidOrgUnit(frm) &&
ValidOrg(frm) &&
ValidCountry(frm) &&
ValidAltEmail(frm) &&
ValidNotifyEmail(frm) &&
ValidPassPhrase(frm) &&
ValidPublicKey(frm)){
# Add your validation Javascript here if needed ---
return true;
}
else
return false;
}
//-->
</SCRIPT>
%%Requestor (optional)%%
%%CommonName%%
%%OrgUnit (optional)%%
%%Org (optional)%%
%%Country (optional)%%
%%AltEmail%%
%%NotifyEmail (optional)%%
%%PassPhrase%%
%%PublicKey[browsertype]%%
#-- End user input fields and validation Javascript -----------
<p>
<INPUT TYPE="Submit" VALUE="Submit certificate request">
<INPUT TYPE="reset" VALUE="Clear">
</FORM>
<p>
<H3><li>Pick Up a Previously Issued Certificate</H3>
<FORM METHOD=GET ACTION="/[application]/ssl-cgi/caretrieve.rexx">
<INPUT NAME="Template" TYPE="hidden" VALUE="[tmplname]">
<INPUT TYPE="submit" VALUE="Retrieve your certificate">
</FORM>
</ul>
<p>%%-pagefooter%%
</BODY>
</HTML>
</CONTENT>
<CONSTANT>
%%NotBefore=0%%
%%NotAfter=1461%%
%%KeyUsage=digitalsig%%
%%KeyUsage=docsign%%
%%CertPolicies=16%%
%%AuthInfoAcc=OCSP,URL=https://ocsp.bank1.com
%%AuthInfoAcc=IdentrusOCSP,URL=https://tc.bank1.com
%%SignWith=PKI:%%
</CONSTANT>
<SUCCESSCONTENT>
%%-requestok%%
</SUCCESSCONTENT>
<FAILURECONTENT>
%%-requestbad%%
</FAILURECONTENT>
<RETRIEVECONTENT>
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN""http://www.w3.org/TR/html4/loose.dtd">
<HTML lang="en"><HEAD>
%%-copyright%%
<TITLE> Web Based PKIX Certificate Generation Application Pg 3</TITLE>
</HEAD>
<BODY>
<H1> Retrieve Your [tmplname]</H1>
<H3>Please bookmark this page</h3>
<p>Since your certificate may not have been issued yet, we recommend
that you create a bookmark to this location so that when you return to
this bookmark, the browser will display your transaction ID.
This is the easiest way to check your status.
# This ACTION forces userid/pw authentication and runs the task
# under the client's ID
#<FORM NAME=retrieveform METHOD=POST ACTION=
# "/[application]/ssl-cgi-bin/auth/cagetcert.rexx" onSubmit=
#
# This ACTION forces userid/pw authentication but runs the task
# under the surrogate ID
#<FORM NAME=retrieveform METHOD=POST ACTION=
# "/[application]/ssl-cgi-bin/surrogateauth/cagetcert.rexx" onSubmit=
#
# This ACTION is for non z/OS clients. The task runs under surrogate ID
<FORM NAME=retrieveform METHOD=POST ACTION=
"/[application]/ssl-cgi-bin/cagetcert.rexx" onSubmit=
"return ValidateEntry(this)">
<INPUT NAME="Template" TYPE="hidden" VALUE="[tmplname]">
#-- User input fields and validation Javascript ---------------
<SCRIPT LANGUAGE="JavaScript">
<!--
function ValidateEntry(frm){
if (ValidTransactionId(frm) &&
ValidChallengePassPhrase(frm)) {
# Add your own Javascript here if needed
return true;
}
else
return false;
}
//-->
</SCRIPT>
%%-TransactionId%%
%%ChallengePassPhrase (optional)%%
#-- End user input fields and validation Javascript -----------
<p>
<INPUT TYPE="submit" VALUE="Retrieve and Install Certificate">
</FORM>
<p>
<H2>To check that your certificate installed properly, follow the
procedure below:</h2>
<p><B>Netscape V6</B> - Click Edit->Preferences, then Privacy and Security->
Certificates. Click the Manage Certificates button to start the Certificate
Manager.
Your new certificate should appear in the Your Certificates list.
Select it then click View to see more information.
<p><B>Netscape V4</B> - Click the Security button, then Certificates->
Yours. Your certificate should appear in the list. Select it then
click Verify.
<p><B>Internet Explorer V5</B> - Click Tools->Internet Options, then
Content, Certificates.
Your certificate should appear in the Personal list. Click Advanced to
see additional information.
<p>
<FORM METHOD=GET ACTION="/[application]/public-cgi/camain.rexx">
<INPUT NAME="Template" TYPE="hidden" VALUE="[tmplname]">
<INPUT TYPE="submit" VALUE="Home page">
</FORM>
<p>%%-pagefooter%%
</BODY>
</HTML>
</RETRIEVECONTENT>
<RETURNCERT>
%%returnbrowsercert[browsertype]%%
</RETURNCERT>
</TEMPLATE>