# CA Management

## Prerequisites

Register your application with emCA and obtain credentials. Provide:

* **Username (appCode)**
* **Password**
* **Source IP address** for allowlisting

All API traffic must use HTTPS (TLS 1.2+).

##  Registration

1. Submit **appCode**, **password**, and **IP address**.
2. emCA issues a **ClientID** for your application.
3. Use the ClientID for all subsequent API requests.

## Authentication

CA Management REST APIs require an **AuthKey** on every request.

* Generate a unique **transaction ID (`txn`)** per request.
* Capture a **request timestamp (`ts`)** at call time.
* Compute:

  ```
  iniCopyEditAuthKey = SHA256( ClientID + ts + txn )
  ```

  (Concatenate the values as strings; encode the hash as lowercase hex.)
* Send the following with each request (headers or fields as specified by the API reference):
  * `ClientID`
  * `ts`
  * `txn`
  * `AuthKey`

Ensure `ts` represents the current request time and `txn` is not reused.

## CA Management APIs documentation

All APIs related to CA management functionalities:

* createCA
* createCSR
* createorupdateCRL
* createUpdateCRLProfile
* createUpdateProfile
* getCrl
* importCertificate
* generateCertificate

## emCA Version-Based Postman Links:

* [V4.3.1](https://documenter.getpostman.com/view/40123569/2sB34imfqj)

{% hint style="info" %}
Please refer in the respective version sections for older API Postman Collections.
{% endhint %}