SafeGuard LAN Crypt Administration v.3.80 and above
All supported operating systems
What is the purpose of a signature certificate for a security officer?
Yes. Previously, SafeGuard LAN Crypt supported only one standard certificate for security officers. The standard certificate is used to log on to SafeGuard LAN Crypt Administration (technically, this is an encryption operation therefore the certificate is called encryption certificate) and for signing profiles.
However, some PKIs separate signature from encryption certificates. Therefore, in addition to the normally used standard certificate, a signature certificate can now be assigned to a security officer. If this optional certificate is made available, it is used within SafeGuard LAN Crypt Administration to sign the encryption profiles. If it is not available, the standard certificate will be used for the signature as in the past.
The Key Usage of certificate should include following properties:
Digital Signature, Key Encipherment, Data Encipherment
Details can be seen in the SO Properties window, on the Advanced tab.