Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
You can renew or delete your Artifact Signing Identity Validations with an Artifact Signing Identity Verifier role.
Renew Identity Validation
You can check the expiration date of your Identity Validation on the Identity Validation page under an Artifact Signing account. You can renew your Artifact Signing Identity Validation 60 days before the expiration. A notification email is sent to the primary and secondary email addresses with the reminder to renew your Identity Validation. Identity Validation can only be completed in the Azure portal – it can not be completed with Azure CLI.
Note
Failure to renew Identity Validation before the expiration date will stop certificate renewal, effectively halting the signing process associated with those specific certificate profiles. EKU does not change when you renew Identity Validation.
Navigate to your Artifact Signing account in the Azure portal.
Confirm you have the Artifact Signing Identity Verifier role.
- To learn more about Role Based Access management (RBAC) access management, see Assigning roles in Artifact Signing.
From either the Artifact Signing account overview page or from Objects, select Identity Validation.
Select the Identity Validation request that needs to be renewed. Select Renew on the top.
If you encounter validation errors while renewing through the renew button or if Identity Validation is Expired, you need to create a new Identity Validation.
- To learn more about creating new Identity Validation, see Quickstart.
After the Identity Validation status changes to Completed.
To ensure you can continue with your existing metadata.json.
- Navigate back to the Artifact Signing account overview page or from Objects, select Certificate Profile.
- On the Certificate Profiles, delete the existing cert profile associated to the Identity Validation expiring soon:
- Create new cert profile with the same name.
- Select the Identity Validation from the pull-down. Once the certificate profile is created successfully, signing resumes requiring no configuration changes on your end.
Delete Identity Validation
You can delete an Identity Validation that is not in "In Progress" state from the Identity Validation page.
Note
Deleting an Identity Validation before stops the renewal of linked certificate profiles across all the accounts within a subscription where Identity Validation was done. This impacts signing. Deleted identity validation requests cannot be recovered.
Navigate to your Artifact Signing account in the Azure portal.
Confirm you have the Artifact Signing Identity Verifier role.
- To learn more about Role Based Access management (RBAC) access management, see Assigning roles in Artifact Signing.
From either the Artifact Signing account overview page or from Objects, select Identity Validation.
Select the Identity Validation request that needs to be deleted. Select Delete on the top.
A blade opens on the right hand side and lists the number of associated accounts and shows the certificate profiles linked to this Identity Validation.
- Ensure you have read permissions at the subscription level or on all artifact signing accounts to verify the usage of the current identity validation request across all certificate profiles.
Select Delete, if you wish to continue with the deletion of the certificate profile. A deleted Identity Validation request cannot be recovered.
