Versions Compared

Old Version 27

changes.mady.by.user Felipe G Campos Jr

Saved on

compared with

New Version 28

changes.mady.by.user Felipe G Campos Jr

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. go to https://certificates.security.utexas.edu/ to request oneChoose UT austin from the list and click select to get started
  2. Use your EID and EID password to log in.
  3. Authenticate with Duo. 
  4. Click Request a new certificate and use your @austin @austin.utexas.edu address. Only Office365 supports digital signatures at this time. . In rare instances, people request shorter email addresses and use @utexas.edu, or email addresses for their vanity domains such as @starkcenter.org or @meadowscenter.org. You may request a new certificate for those instead if the option is available.
  5. Once your certificate is created it will direct you over to stache go to https://stache.utexas.edu/ . Use  where you will also have to authenticate wit your EID and , EID password to log in.Authenticate with and Duo. 
  6. The entry with your digital certificate will be named encryption and mail signing cert in stache. Click on the newest dated entry
  7. Download your mail encryption keycertificate .P12.
  8. The entry with your digital certicate has a password. you will need that password from the Encrypted file password field to import the certificate into your Acrobat Digital IDs. Select the whole password with your mouse and hit Command-C or go to the Edit menu and choose Copy.

...

  1. Open Acrobat by clicking on it if it's in your dock, or by going to your Applications folder and double clicking Acrobat Pro/Acrobat Pro DC/Acrobat Reader DC
  2. Go to the Acrobat Menu and slide down to Preferences
  3. slide down to Signatures and click on it
  4. in the Identities & Trusted Certificates section, click More
  5. Click Add ID
  6. Leave the default selection of My existing digital ID from: A file and click Next
  7. Browse to your Downloads folder, click on the .P12 file, and click Open
  8. Enter the password from the stache field labeled Encrypted file password or paste the previously copied password (Command-V or choose Paste from up top in the Edit menu)
  9. Click Next
  10. Click Finish
  11. Click the newly imported Digital ID that has your FIrstName LastName <emailaddress>
  12. up in the Usage Options heading, slide down and click Use for signing. Do this again for Use for Certificy and Certifying and Use for Encryption
  13. Click Close
  14. Click OK
  15. To test it out, you can open a PDF document and sign a document AFTER you Update the Adobe Trusted Root Certificates (below).

For Windows:

  1. Double clicking the downloaded .p12 file will open Certificate Import Wizard.
    Go through the wizard. You shouldn't have to tick off anything. Do not check the box to force strong protection or it will make you enter your password every time you want to use

...

  1. the certificate for signing. You will need the password from the stache entry in your encryption and mail signing cert.
  2. Finish the wizard.

 

This wiki page demonstrates how to place a signature in Acrobat. On a mac, the first time you sign a document, it will ask for your Login password. It will be your EID password. Make sure you click Always Allow or it will make you do this for every document you try to sign. 

...

When someone uses their UT assigned digital certificate to sign a document, by default new installations of Adobe Acrobat/Reader will not trust the signature, which will result in a warning being displayed when people open up the signed document and verify the authenticity of the certificate used to sign the document. This happens because the certificate company that UT uses for their certificates is not currently built into and trusted by Adobe Acrobat/Reader. So you have to manually update Acrobat to download the latest global trusted Certificate Authorities. This manual trust has to be done on a per-user account basis so if you have multiple users on a computer, each user account will need to go through the process of downloading Trusted Cerficate Authorities. 

  1. Ensure Adobe Acrobat/Reader is installed on the target computer.
  2. Choose Edit > Preferences (Windows) or Acrobat Acrobat Reader Menu bar > Preferences (macOS).
  3. From the Categories on the left, select Trust Manager.
  4. Select the option Load Trusted Root Certificates From An Adobe Server. This option allows Acrobat or Reader to automatically download trust settings from an Adobe server. These trust settings ensure that the user or organization associated with the certificate has met the assurance levels of the Adobe Approved Trust List program.Do the following: (AATL) program.
  5. Tick the box to be prompted when new root certificates are available from Adobe.
  6. Select Ask Before Updating.
  7. Click Update Now.
  8. Download the latest version of the You may repeat these steps for the European Trust List from Adobe.
  9. Click Update Now.Click OK
  10. Restart Adobe Acrobat/Reader to put the change into effect.

•Now when you verify the UT employee digital certificate used to sign a document, it should show up as valid. This should happen automatically. Adobe will be able to validate signatures from any institution that uses these same Trusts.

Adding a digital certificate to sign an Adobe PDF

...