There are 15 types (profiles) of SSL certificates available from the eduPKI CA specifically for GÉANT's Multi-Domain Network Services:
A Certificate of the "Server and Client" profile series is a combined SSL-Server and SSL-client certificate. With this profile it is feasible to:
- Authenticate an SSL-server to a client (e.g. a web-browser)
- Provide an encrypted SSL/TLS connection between SSL-Server and SSL-Client.
- Authenticate a client machine to an SSL-server (i.e. SSL client authentication)
| Certificate Profile | Description |
| GNs Multi-Domain Network Services Server and Client autoBAHN | Combined server and machine client certificate for autoBAHN |
| GNs Multi-Domain Network Services Server and Client cNIS | Combined server and machine client certificate for cNIS |
| GNs Multi-Domain Network Services Server and Client I-SHARe | Combined server and machine client certificate for I-SHARe |
| GNs Multi-Domain Network Services Server and Client perfSONAR | Combined server and machine client certificate for perfSONAR |
| GNs Multi-Domain Network Services Server and Client | General purpose combined server and client certificate for all of GÉANT's multi-domain network services |
Server and Client Certificate Profile Series
Note: A certificate of type "Server and Client" is most useful for a service that acts as a server for other clients as well as connects as a client to other services. A typical example for such a service is a Mail Transport Agent (MTA, mail server) which acts as a server when receiving emails from other MTAs or from its local email clients as well as a client when it is delivering/forwarding queued emails to their recipients' remote MTAs.
A Certificate of the "Client" profile series is an SSL-client certificate, which can only serve the purpose to authenticate a client machine to an SSL-server (i.e. SSL client authentication):
| Certificate Profile | Description |
| GNs Multi-Domain Network Services Client autoBAHN | Machine client certificate for autoBAHN |
| GNs Multi-Domain Network Services Client cNIS | Machine client certificate for cNIS |
| GNs Multi-Domain Network Services Client I-SHARe | Machine client certificate for I-SHARe |
| GNs Multi-Domain Network Services Client perfSONAR | Machine client certificate for perfSONAR |
| GNs Multi-Domain Network Services Client | General purpose client certificate for all of GÉANT's multi-domain network services |
Client Certificate Profile Series
- Authenticating an SSL-server to a client (e.g. a web-browser) and
- To provide for an encrypted SSL/TLS connection between SSL-server and a client
| Certificate Profile | Description |
| GNs Multi-Domain Network Services Server autoBAHN | Server certificate for autoBAHN |
| GNs Multi-Domain Network Services Server cNIS | Server certificate for cNIS |
| GNs Multi-Domain Network Services Server I-SHARe | Server certificate for I-SHARe |
| GNs Multi-Domain Network Services Server perfSONAR | Server certificate for perfSONAR |
| GNs Multi-Domain Network Services Serve | General purpose server certificate for all of GÉANT's multi-domain network services |
Server Certificate Profile Series
