The WSTEP certificate types you added to Security Manager have certificate definitions. You must map certificate definition policies to these certificate definitions as described in the following procedures.

To map a certificate definition policy to the WSTEP Encryption certificate type: 

1. Log in to Security Manager Administration.
2. In the tree view, expand Security Policy > Certificate Categories > Enterprise > WSTEP Encryption (WSTEP Encryption Certificate) > Encryption_p10.
3. In the Certificate definition Policy drop-down list, select Encryption_P10 policy.
4. Click Apply.
5. If prompted, authorize the operation.
   

To map a certificate definition policy to the WSTEP Signing certificate type:

1. Log in to Security Manager Administration.
2. In the tree view, expand Security Policy > Certificate Categories > Enterprise > WSTEP Signing (WSTEP Signing Certificate) > Verification_P10 .
3. In the Certificate definition Policy drop-down list, select Verification_P10 policy.
4. Click Apply.
5. If prompted, authorize the operation.
   

To map a certificate definition policy to the WSTEP Signing and Encryption certificate type:

1. Log in to Security Manager Administration.
2. In the tree view, expand Security Policy > Certificate Categories > Enterprise > WSTEP Signing and Encryption (WSTEP Signing and Encryption Certificate) > Dual Usage.
3. In the Certificate definition Policy drop-down list, select Dual Usage Policy.
4. Click Apply.
5. If prompted, authorize the operation.
   

To map a certificate definition policy to the WSTEP Signing and Nonrepudiation certificate type:

1. Log in to Security Manager Administration.
2. In the tree view, expand Security Policy > Certificate Categories > Enterprise > WSTEP Signing and Nonrepudiation (WSTEP Signing and Nonrepudiation Certificate) > Nonrepudiation.
3. In the Certificate definition Policy drop-down list, select Nonrepudiation Policy.
4. Click Apply.
5. If prompted, authorize the operation.