Skip to content

Generate Certificate

Jump to bottom
klabarge edited this page Jan 18, 2016 · 37 revisions

Compatibility

  • ✅ 2.0 | ✅ 1.9 | ...

Objective

  • Generate an Intermediate Certificate and a public/private key pair for signing messages

Steps

If you have purchased a premium version of QZ Print, you can follow the steps below for trusted-signing. Trusted-signing will suppress the print warnings.

image

  1. Navigate to https://qz.io/login/
  2. Enter in the product key and click Sign In

Note: Make sure there are no blank spaces before or after the product key.

  1. Once signed in, you are given two options. Select QZ Tray.

image

  1. At the next screen you have the ability to generate a CSR (Certificate Signing Request) and a public/private key pair.

You may already have a CSR and/or a public/private key pair. If that is the case, you can upload either of these at this screen.

If you do not upload anything, a public key, private key, and a certificate will be generated.

  1. Fill in the required fields and hit Submit request

NOTE: Currently, you cannot generate the certificate/keys in either IE11 or Safari. Please use either Chrome, Firefox, or Microsoft Edge.

![image](https://cloud.githubusercontent.com/assets/12505463/8027251/4893ef74-0d62-11e5-82e7-eb9f091e714a.png)
  1. After a few seconds a new field will appear at the bottom of the page. Download the public key, private key, and certificate.

Note: All three downloads will not be available if you provided QZ with a CSR or a public/private key pair. The public key chain will always be provided by QZ.

This key chain will be used by QZ Tray to verify the authenticity of signed messages and to suppress the print warnings.

![image](https://cloud.githubusercontent.com/assets/12505463/8027846/bb5af560-0d6d-11e5-97ff-5b94756fcde4.png)
  • Private Key: private-key.pem Needed for signing messages. This allows silent printing.
  • Public Key: public-key.txt Not needed for printing, but is used to request new certificates.
  • Intermediate Certificate (Trusted Certificate): digital-certificate.txt Used on page load for silent printing.

Important

For security reasons, it is advised to store your private key in a secure location. Your private key should never be given out to anybody. If your private key is leaked, someone with malicious intents will be able to sign traffic on your behalf.

If you believe your private key has been leaked, please let us know so we can blacklist this key.

Note: The certificate and the private key are generated by YOUR web browser. This means we never get a copy of it, and could never pretend to be you while we print.

  1. Now at that you have these keys, navigate to the appropriate link below for instructions on how to securely sign messages.
Clone this wiki locally