Installing Trusted Anchors and Certificate Revocation Lists

Context

If you are using Certification and Digital Signatures credentials you will also need to install and configure the following elements in Adobe Document Services (ADS):

Trusted Anchors

Trusted Anchors enable the server to verify the certification or signature of a form. They may be Certification authority (CA) certificates or individual user's certificates. There are two cases:
- You need a Trusted Anchor - an additional certificate containing the CA's public key - to provide it to anyone, to whom you will send forms certified or signed using the corresponding private key (saved within your system). (A credential received from a CA contains a private and a public key.)
- You need a Trusted Anchor in order to trust signatures or certifications that other people applied to documents using their own credentials.
Certificate Revocation Lists (CRLs)

CRLs identify credentials that can no longer be trusted. CRLs also prevent you from applying a digital signature that is no longer valid, and it lets you know when digital signatures on incoming documents are invalid.

CRLs should be updated on a regular basis (for example, daily or weekly).

Procedure

In case your PDF forms are certified or signed by the server or submitted by users, install the corresponding Trusted Anchor to enable the server to verify the certification or signature of a form.

More information: Installing Trusted Anchors
To identify credentials that can no longer be trusted or to avoid applying a digital signature that is no longer valid, install Certificate Revocation List files (CRLs).

More information: Installing Certificate Revocation Lists