1 .. This work is licensed under a Creative Commons Attribution 4.0 International License.
2 .. http://creativecommons.org/licenses/by/4.0
3 .. Copyright 2020 NOKIA
9 Interaction between components
10 ------------------------------
12 .. image:: resources/certservice_high_level.png
15 :alt: Interaction between components
18 Simplified certificate enrollment flow
19 --------------------------------------
21 .. image:: resources/certService_cert_enrollment_flow.png
24 :alt: Simplified certificate enrollment flow
26 Security considerations
27 -----------------------
29 CertService's REST API is protected by mutual HTTPS, meaning server requests client's certificate and **authenticate** only requests with trusted certificate. After ONAP default installation only certificate from CertService's client is trusted. **Authorization** isn't supported in Frankfurt release.