Choosing a key algorithm based on the certificate authority (CA)
When you request a new certificate you'll be asked to choose a key algorithm.
Use these tables to help you determine which key algorithm best suits your needs.
|
Certificate Authority |
Notes |
|---|---|
| Adaptable CA | Supported |
| Sectigo Certificate Manager (SCM) | May require the addition of special account features. Contact the CA for help. |
| DigiCert CertCentral | Supported |
| Entrust Certificate Services | Requires a certificate product that supports ECC such as Advantage. |
|
GlobalSign |
Supported |
|
HID PKIaaS |
May require the addition of special account features. Contact the CA for help. |
|
Microsoft Active Directory Certificate Services (ADCS) - Enterprise and Standalone |
Requires a template that uses an EC algorithm name (Cryptography tab). |
|
Open SSL |
Supported |
|
QuoVadis |
May require the addition of special account features. Contact the CA for help. |
|
RedHat Certificate System |
May require special features that are not installed or licensed by default. Contact the CA for help. |
|
RSA Certificate Manager |
May require special features that are not installed or licensed by default. Contact the CA for help. |
|
Self-signed |
Supported |
Certificate authorities that do not support ECC algorithms
| Amazon Certificate Manager |
|
VikingCloud |
-
If you selected ECC, select the Elliptic Curve name.
- If you selected RSA, select the Key Strength.
NOTE To see a comparison chart, see About RSA and elliptic curve cryptography (ECC) key algorithms.
