Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 43 Next »


ADSS Server provides comprehensive digital signature creation, verification and time-stamping services to any online application needing to trust documents and data that it sends out or receives. It is a single server product but market under various names depending on the modules selected. ADSS Server has been designed for internal enterprise use as well as external multi-party use and for Managed Service Providers.


Services & Modules


ADSS Signing Service

ADSS Signing Service provides comprehensive solution for creating  advanced digital signatures on any type of document, web form or online transaction data, see details.


ADSS Verification Service 

ADSS Verification Service provides the OASIS DSS and DSS-X compliant options for data and document signature verification services to any requesting client application, see details.

  • How to configure ADSS Verification Service to verify digital signatures
  • How to invoke verification profile for non-registered CAs


ADSS Certification Service 

ADSS Certification Service provides certificate authority services to client applications, which may act as RA and send public keys for certification and/ or request the creation of asymmetric key pairs, see details.  

  • How to put the custom defined RDNs in a certificate
  • What is meant by an External CA



ADSS OCSP Service 

ADSS OCSP Service is an advanced implementation of the Online Certificate Status Protocol (OCSP) for providing the revocation status of x.509 certificate, based on either CRLs or realtime certificate information, see details.

  • How to avoid a malformed request error when sending multiple Cert IDs in a single OCSP request
  • How to configure the ADSS OCSP Service to produce high speed OCSP responses


ADSS TSA Service

ADSS TSA Service provides independent and irrefutable proof of time for transactions, documents and digital signatures. It can create legal weight evidence that business transactions occurred at a defined moment in time, and they have not been subsequently altered, see details.

  • How to include the full TSA certificate chain in ADSS TSA Server response
  • Is it reliable to use the system clock in a virtualised environment


ADSS XKMS Service 

ADSS XKMS Service provides a sophisticated real-time certification Validation Authority, fully conformant with W3C XKMS and PEPPOL validation protocol, see details. 

  • How to decide between Basic Validation and Advanced Validation settings in an XKMS profile
  • How to ensure seamless processing of signature/ certificate validation request, when the CA chain is already registered in Trust Manager




ADSS SCVP Service supports the RFC5055 Server-based Certificate Validation Protocol (SCVP). This protocol is used to determine and validate the path between an X.509 digital certificate and a trusted root, see details.  

  • How to decide between Basic Validation and Advanced Validation settings in a SCVP policy
  • How to invoke validation policy for non-registered CAs


ADSS Go>Sign Service 

ADSS Go>Sign Service is a complete client side solution for browser-based document viewing, form-filling, advanced signing/ authentication and centralised signature verification, by using the local and server held keys, see details.

  • How to clear Java cache to ensure new version of Go>Sign Applet is loaded
  • How to configure the environment to use the Signotec Tablet with Go>Sign Service


ADSS RA Service

ADSS RA Service acts as a gateway between PKI end-entities that include human users, servers or devices, and the back-end secure Certificate Authorities (CAs), see details.

  • How does ADSS RA Service process the certification requests
  • How to make the certification requests received over the RA web service interface to be processed synchronously



ADSS Key Manager

The ADSS Key Manager module is responsible for managing all the keys used within the ADSS system (i.e. for any of the service modules). The keys can be generated, stored and used inside a PKCS#11 compliant HSM or within the ADSS database in case of software mode, see details.

  • How to configure ADSS Server to use Key Encryption Key (KEK)
  • How to attach multiple HSMs to ADSS Server


ADSS Trust Manager

The ADSS Trust Manager module is used to register all the acceptable Trust Authorities (TAs). It is a global utility, supporting various other modules of ADSS Server to verify signed objects such as certificates, OCSP responses, CRLs or timestamp tokens, see details.

  • How to replace an expired CA certificate
  • How to link TSAs to relevant CAs in the ADSS Trust Manager


ADSS CRL Monitor

The ADSS CRL Monitor module provides automated monitoring for multiple CRL issuers, it provides effective management reporting, failure alerting through email and SMS and other advanced options, see details.

  • Why is ADSS CRL Monitor not starting?
  • How to implement real time revocation



ADSS Global Settings

The ADSS Global Settings module is used to configure ADSS Server settings that are applicable throughout the ADSS modules, see details. 

  • How to import ADSS Server configurations from one server to another
  • How to configure SMS Alerts in ADSS Server


ADSS Manage CAs 

The Manage CAs module provides the capability to configure multiple local CAs/ AAs and/ or external CAs for the certification purposes, see details.

  • How to replace an existing local CA
  • How to import a CA and its issued certificates into ADSS Server


ADSS Access Control

The ADSS Access Control module provides secure authentication and authorization mechanism via ADSS Server Console, see details.

  • How to register a new operator in ADSS Server Console
  • How to ensure the accessibility of ADSS Server Console



Operational Management

This section describes 'How to Operate' ADSS Server and other operator actions that may need to be performed from time to time, see details.

  • Installation & Configuration
  • Software upgrade


Third Party Integration

Some of the third party system integrations that are available for ADSS Server:

  • How DMZ / Load-balancing is configured?
  • Turning on the debug level logging for the SafeNet Luna SA HSM


ADSS Server Error Codes

Here are the system defined error messages sent by ADSS Server to client applications:

  • Certification service
  • Signing service




  • Producing PAdES-LTV signatures in ADSS Server that are verifiable in Adobe Reader
  • Trusting a Root CA certificate in the Adobe Reader


PDF Sign&Seal

  • How can I buy PDF Sign&Seal support from website
  • Why do I receive error message "Root element missing" when I try to run application


Certificate Center

  • How can I download my digital certificate
  • How can I export my private keys from Internet Explorer



  • No labels