Managing Sectigo Key Vault

Update key recovery options

PKCS#12
iOS Mobile Config or PKCS#12

Navigate to Settings Key Vault.
Click the Edit icon.
Select Recover via PKCS#12 File Always.
Click Save.

Navigate to Settings Key Vault.
Click the Edit icon.
Select Recover via iOS Mobile Config or PKCS#12 File.

(Optional) Configure iOS Mobile Config Security settings.

Field	Description
Digitally Sign iOS Mobile Config	When enabled, the mobile configuration file is digitally signed.
PKCS#12 File	The private key to use to digitally sign the mobile configuration file.
Backup File Password	The password for the PKCS#12 file used to sign the file.

Field

Description

Digitally Sign iOS Mobile Config

When enabled, the mobile configuration file is digitally signed.

PKCS#12 File

The private key to use to digitally sign the mobile configuration file.

Backup File Password

The password for the PKCS#12 file used to sign the file.

(Optional) Configure Exchange Configuration settings.

Field	Description
Include Exchange Configuration in iOS Mobile Config	When enabled, Microsoft Exchange settings are included in the mobile configuration file. These settings configure an Exchange ActiveSync Contacts account on the device. Mail and Calendar are not configured using this account on iOS. The Principal Name of the device owner in SCM is used as Exchange login and is embedded into the ActiveSync profile. When enabled, the mobile configuration file is applied when the private key is downloaded from the Sectigo Key Vault.
Exchange Server Host Name	The Microsoft Exchange server host name or IP address.
Use SSL For Communication	Indicates whether the Microsoft Exchange server uses SSL for authentication.
Number of Past Days to Sync	The number of days of mail to sync. Mail received before this number of days in the past will not be synchronized.
Prevent Moving Messages to Another Account	When enabled, messages cannot be moved out of the associated email account into another account.

Field

Description

Include Exchange Configuration in iOS Mobile Config

When enabled, Microsoft Exchange settings are included in the mobile configuration file.

These settings configure an Exchange ActiveSync Contacts account on the device. Mail and Calendar are not configured using this account on iOS. The Principal Name of the device owner in SCM is used as Exchange login and is embedded into the ActiveSync profile.

When enabled, the mobile configuration file is applied when the private key is downloaded from the Sectigo Key Vault.

Exchange Server Host Name

The Microsoft Exchange server host name or IP address.

Use SSL For Communication

Indicates whether the Microsoft Exchange server uses SSL for authentication.

Number of Past Days to Sync

The number of days of mail to sync. Mail received before this number of days in the past will not be synchronized.

Prevent Moving Messages to Another Account

When enabled, messages cannot be moved out of the associated email account into another account.

Recover client certificate private keys

Navigate to Persons.

You can also recover client certificate private keys from the Client Certificates page.
Select the appropriate user, and click Certificates.
Select the certificate for which you want to recover the private key, and click View.
Click the Download icon, and select Certificate and Private key, PKCS#12, Key Vault.
Enter a password for the downloaded .p12 file.
Select an encryption algorithm.
Click Download.