Discuss this help topic in SecureBlackbox Forum
Use the timestamp for signing
Authorizing to timestamping server Some timestamping servers employ user authorization facility to only allow access to authorized users. Two common authorization types are used. The first one is based on some standard HTTP authorization (plain, basic or NTLM). The other gets use of X.509 certificates to authorize the user via TLS client authentication mechanism. Both authorization options are adjustable via properties published in the associated TElHTTPSClient object. To set up HTTP authorization you would normally use properties exposed in the TElHTTPSClient object that you have assigned to your TElHTTPTSPClient (see this article about general use of TElHTTPTSPClient component): tspClient.HTTPClient.RequestParameters.Username = "user"; tspClient.HTTPClient.RequestParameters.Password = "user"; To set up TLS-based client authentication, you will need to load your certificate (with its private key) into a TElMemoryCertStorage component and attach that component to TElHTTPSClient.ClientCertStorage property. You will find more details about configuring TLS components for client authentication in the relevant section of the documentation. The third option, used quite rarely, are CMS-based TSP requests. In this scenario, each TSP request is signed with the requestor's certificate and enveloped in a CMS message. In this case, you will need to load your signing certificate (with its private key) into a TElMemoryCertStorage component and attach that component to your TSP client's CertStorage property. Besides, you will have to set the RequestFormat property of the TSP client component to TSBTSPRequestFormat.tsfCMS.