Create a self-signed CA template

1. From the Certificate Authority Templates node in Venafi Configuration Console, click Create, and then select Self-Signed CA Connector.

2. Give the new CA template a name. This is the name that will be shown in Aperture when adding a CA template to an environment. Click Create. The Configure New Connector dialog opens.
3. In the Settings tab, enter a Description and choose a Contact for this template. Select a Validity Period for the certificates that will be issued using this template.

4. In the Key Usage tab, check the appropriate checkboxes for your purposes. The following key usages and extended key usages are available:

   Only encipherment

   CRL signing

   Certificate signing

   Key agreement

   Data encipherment

   Key encipherment

   Non-repudiation

   Digital signature

   Only decipherment

   Server authentication

   Client authentication

   Document signing

   Time stamping

   Code signing

   TIP  Standard code signing certificates have Digital Signature and Code Signing checked. If you have a special use case, your application might require additional options to be checked