Domain Approval for All Applications
An application whose domain is approved will get a TLS Certificate from Fortanix Confidential Computing Manager (CCM). This certificate will have the domain as a subject name which will allow all requests from this domain to be served by the application. If this domain is not approved, the image will run but it will not be issued any TLS certificate from Fortanix Confidential Computing Manager.
Prerequisites:
- An application should be created with a new domain.
Steps:
- Add an application with a domain as described in Add an application.
- After the application is created successfully, click the Tasks tab in UI for approving a domain approval task.
Figure 1: Tasks Tab for Domain Approval - A domain approval task will be created for the application. Click the task and click Approve to approve the task (Figure 2).
Figure 2: Task for Enclave OS App Domain Approval
Figure 3: Task for EDP App Domain Approval
Figure 4: Task for ACI App Domain Approval - Any user in the account with an Administrator or Editor role can approve a task.
- After the task is approved, you can see your closed task with a summary in the Closed tab.
Figure 5: Approving Enclave OS Tasks
Figure 6: Approving EDP Tasks
Figure 7: Approving ACI Tasks
Image Approval for Enclave All Applications
After an image is created and when an application runs from this converted image, the application will try to contact Fortanix Confidential Computing Manager and ask for a TLS Certificate. If the image is not approved, it will run but Fortanix Confidential Computing Manager will deny this TLS Certificate. If Fortanix CCM denies the TLS Certificate, then the application will not run. To run applications in the enclave over certificates issued by this service, an image needs to be approved. When an image is approved, it is added to the list of pending requests in the Tasks tab of the Fortanix Confidential Computing Manager User Interface. You can use the UI to approve or deny the request.
Prerequisites: An application created successfully.
Steps:
- Create an image of an application as described in Create an Image for an Application.
- After the image is created successfully, click the Tasks tab in UI for approving the application image approval task.
Figure 8: Tasks Tab for Image Approval - An application image approval task will be created for the application. Review the request, and then click Approve or Decline.
Figure 9: Tasks for Enclave OS App Image Approval
Figure 10: Tasks for EDP App Image ApprovalFigure 11: Tasks for ACI App Image Approval
- Any user in the account with an Administrator or Editor role can approve an image approval task.
- After the task is approved, click the Closed tab on the same page. Your closed task will now be listed with a summary.
Figure 12: Enclave OS Image Approved Tasks
Figure 13: EDP Image Approved Tasks
Figure 14: ACI Image Approved Tasks
Comments
Please sign in to leave a comment.