Skip to main content

Configure via GPO or Device Management solution

Administrators can use Group Policy Object (GPO) or third-party device management solutions to deliver the extra-conf.json file to the DigiCert​​®​​ Trust Assistant directory located in the user’s home directory. This file allows configuration of advanced settings beyond the defaults defined in the config.json file.

Nota

For more information about config.json, refer to Configuration details of DigiCert Trust Assistant.

extra-conf.json requirements

Configure the extra-conf.json file with the following requirements:

  • File name: extra-conf.json

  • Path: ~/.digicert-trust-assistant/extra-conf.json

    • For Windows: C:\Users\<Username>\.digicert-trust-assistant\extra-conf.json

    • For macOS: /Users/<Username>/.digicert-trust-assistant/extra-conf.json

  • File encoding: ASCII or UTF-8

  • Data format: JSON

  • Access control: Read-only

    Nota

    It is important to set the file as Read-only to prevent the users from editing it.

extra-conf.json parameters

The following table describes the specific configuration parameters available for extra-conf.json.

Parameter

Description

signIn

Defines sign-in settings for profiles using DigiCert ONE Login. Refer to Sign in configuration for more details.

setting.autoUpdate & setting.blockUpdate

Used for settings related to updates through the update server, including enabling or disabling auto-update and completely blocking updates. Refer to Update settings for more details.

setting.proxySettings

Used for configuring proxy settings required for your network environment. It is required when DigiCert​​®​​ Trust Assistant cannot automatically resolve the system proxy setting by default. Refer to Proxy settings for more details.

keystores

Used for enabling and disabling keystores, editing loginSessionValidity, and adding new keystore configurations. Refer to #-en--keystore-settingsKeystore settings for more details.

Delivering extra-conf.json via GPO

To deliver extra-conf.json to /.digicert-trust-assistant/extra-conf.json using GPO, perform the following steps:

Prerequisites

Ensure that you already have  the following:

  • A target GPO in your domain. If you do not have a GPO, create one.

  • A shared network folder containing extra-conf.json, with proper permissions for user access.

Procedure

  1. Sign in to Group Policy Management Console.

  2. Navigate to your target GPO and right-click > Edit.

  3. Navigate to User Configuration > Preferences > Windows Settings > Files.

  4. Right-click in the right pane and select New > File.

  5. Configure the following properties:

    • Action: Select Update.

    • Source File: Specify the location of the extra-conf.json (for example, \\servername\foldername\extra-conf.json)

    • Destination Folder: Specify %USERPROFILE%\.digicert-trust-assistant\extra-conf.json

    • Attributes: Select Read-only.

  6. Select OK to finish.

For more details, refer to Microsoft documentation. For third-party Device Management solution, refer to vendor documentation to create and provision this file in the user’s directory.

Nesta secção:
OSZAR »