We do not currently have a certificate practices statement.
This CA is for company use, and is only used for domains and addresses under our control, as well as internal .local addresses.
The following describes the OIDs used for issuance policies:
| OID | Policy Name | Description |
|---|---|---|
| User Certificates | ||
| 1.3.6.1.4.1.46769.1.1.10.10 | User Account Verified | Issued automatically to users based on their username and password |
| 1.3.6.1.4.1.46769.1.1.10.20 | User Identity Verified | Issued manually after checking company issued ID card or government issued ID. |
| 1.3.6.1.4.1.46769.1.1.10.30 | User Identity Verified Hardware Escrow | Same as User Identity Verified, but private key archived for key escrow then stored on hardware token/smart card. |
| 1.3.6.1.4.1.46769.1.1.10.40 | User Identity Verified Hardware Only | Same as User Identity Verified, but private key generated and stored solely on hardware token/smart card. |
| Machine Certificates | ||
| 1.3.6.1.4.1.46769.1.1.20.10 | Machine Account Verified | Issued automatically to company computers and devices based on active directory computer account. |
| 1.3.6.1.4.1.46769.1.1.20.20 | Machine Identity Verified | Issused manually to company machines and devices. |