DigiCert KnowledgeBase - Technical Support-hero

Knowledge Base

AATL Certificate Template Removal | PKI Platform

Solution ID : GN270319203621
Last Modified : 11/21/2023

Description

In order to remain compliant with Adobe Policy and align with industry best practices, Adobe Individual, Adobe Organization and Adobe CDS certificate templates have been removed from DigiCert PKI Platform accounts that have not deployed the template or have issued certificates from such template(s) that are now expired.

The following Base Certificate Templates (BCTs) will be removed:

  • Adobe® Individual
  • Adobe® Organization
  • Adobe® Certified Document Service (CDS)
 

What CAs are impacted?

The below table details the Issuing CAs (and their hierarchy) that are publicly trusted by Adobe, which are associated to the certificate templates that will be removed from MPKI 8 accounts:

Certificate Template Name Issuing CA Name Intermediate CA Root CA
Adobe® CDS SYMANTEC SHARED CA FOR ADOBE CDS VeriSign Intermediate CA for Adobe CDS Adobe Root CA
Adobe® CDS DEPARTMENT OF TRANSPORT CA FOR ADOBE CDS VeriSign Intermediate CA for Adobe CDS Adobe Root CA
Adobe® CDS Organization SYMANTEC SHARED CA FOR ADOBE CDS VeriSign Intermediate CA for Adobe CDS Adobe Root CA
Adobe® Individual SYMANTEC INDIVIDUAL DOCUMENT SIGNING RSA CA   Symantec Document Signing RSA Root CA
Adobe® Individual SYMANTEC CLASS 2 INDIVIDUAL SIGNING RSA CA Symantec Class 2 Signing RSA Intermediate CA Symantec Class 2 Public Primary Certification Authority - G6
Adobe® Organization SYMANTEC CLASS 3 ORGANIZATIONAL SIGNING RSA CA  

Symantec Document Signing RSA Root CA        

 

 

 

When did this change take place?

The certificate templates were removed from the accounts starting April 29, 2019.

 

How does this affect you?

There is no impact for customers that no longer issue AATL certificates.

If you already issued AATL certificates that are still valid, you will be contacted by DigiCert directly to inform you about the new steps you need to adhere to, in order to remain compliant with Adobe’s Technical Requirements v2.0 and be able to continue to issue certificates.

 

How do I gain access to an Adobe Certificate Template once removed?

DigiCert is preparing a plan of action to be able offer support for Adobe certificates. This may include items such as an inline attestation process, repository for uploading face-to-face video calls, etc.

DigiCert is implementing enhanced compliance steps that adhere to the Adobe Approved Trust List (AATL) Technical Requirements v2.0.

Once the enhanced compliance steps have been implemented, customers who require to issue Adobe certs will be able to request the addition of Adobe certificate templates to your account, via PKI Support or contact your Digicert Platinum Client Manager.

 

Could the plans change?

We will do our utmost to minimize changes or disruptions. If significant changes are planned to occur, we will inform you as soon as possible.

Stay current with the latest news and updates.

  • DigiCert Logo

    The most-trusted global provider of high-assurance TLS/SSL, PKI, IoT and signing solutions.