A new version of the CERN-CA-certs package is available in the QA environment.
The new package removes the older certificates of the CERN Certification Authority. Please make sure to test your services and software with the new package.
Full details are available on the SSB entry: OTG0077330.

Skip Navigation Links.

CERN Certification Authorities

The digital certificates infrastructure at CERN consists of a root certification authority and two intermediate authorities, as shown in the diagram below.

CERN Certification Authorities

CERN Grid Certification Authority

The CERN Grid Certification Authority is a member of the European Grid Policy Management Authority (EUGridPMA), and is compliant with the requirements and best practices for Grid identity providers estabilished by the authority.

Certificates issued by the CERN Grid Certification Authority can be used for Grid authentication, and are supported by most Grid software.

Types of certificates issued by the CERN Grid Certification Authority:

CERN Certification Authority

The CERN Certification Authority is meant to issue certificates for internal CERN usage only, not subject to the restrictions required for Grid authentication. This could allow, for example, to issue certificates with a validity longer than one year.

Certificates issued by the CERN Certification Authority cannot be used for Grid authentication and are meant for internal CERN usage only (e.g. Code Signing certificates).

Types of certificates issued by the CERN Certification Authority:

Created: 3/10/2020
Last reviewed: 5/2/2022
Send the page Send  |  Printable version Print