{"id":10330,"date":"2022-04-18T13:14:40","date_gmt":"2022-04-18T20:14:40","guid":{"rendered":"https:\/\/csop.cirasync.com\/?p=10330"},"modified":"2026-03-24T21:21:28","modified_gmt":"2026-03-25T02:21:28","slug":"certificate-based-authorization-with-csop-ucm","status":"publish","type":"post","link":"https:\/\/csop.cirasync.com\/de\/support\/certificate-based-authorization-with-csop-ucm\/","title":{"rendered":"Certificate-Based Authorization\u00a0with CiraSync On-Prem UCM"},"content":{"rendered":"

Overview: Certificate-Based Authorization<\/span><\/b>
\n<\/span><\/h2>\n

There are multiple ways to programmatically authenticate with Microsoft Azure. The most common method uses an \u201cAccess token\u201d as part of modern authentication techniques. The access token allows the CiraSync On-Prem Unified Contact Manager (UCM) to access Azure resources. However, the lifetime of an \u201cAccess Token is 90 days (about 3 months) and must be refreshed regularly. After expiry, the token must be updated by an interactive login to the Azure portal.<\/span>\u00a0<\/span>Certificate-Based Authorization is another method of accessing Azure resources using identities based on certificates. In many cases, this may be preferred over modern authentication. The main justification is that when programmatically calling PowerShell, basic authentication is deprecated. Thus, the only viable option is Certificate-Based Authentication. Even when using the Microsoft Graph API, there is an additional advantage in that the \u201cRefresh Token\u201d does not require human intervention each time a refresh token expires.<\/span>\u00a0<\/span><\/p>\n

How Does Certificate-Based Authentication Work?<\/span><\/b>\u00a0<\/span><\/h2>\n

The certificate is usually uploaded to the Azure<\/a> portal and every time we access the Azure resource, we use the certificate to generate an access token. So, the certificate replaces the \u201cRefresh Token\u201d in the OAuth flow. The following steps describe what should be done to configure certificate-based authorization:<\/span>\u00a0<\/span><\/p>\n

    \n
  1. Create your certificate and prepare two files: one file certificate without a private key and the second with a private key<\/span><\/li>\n
  2. Create an Application on the Azure Portal in your tenant<\/span><\/li>\n
  3. Configure your created application as follows:<\/span>\u00a0<\/span><\/li>\n<\/ol>\n
      \n
    • Assign API permissions that allow application access to the target resources<\/span>\u00a0<\/span><\/li>\n
    • Assign a certificate without a private key to the created application<\/span>\u00a0<\/span><\/li>\n
    • Create a Service Principal Entry in the Azure Active Directory and assign this entry to the application. This entry will be used as an access user when connecting to Azure resources via certificate-based authorization<\/span>\u00a0<\/span><\/li>\n
    • Assign necessary permissions to the created Service Principal Entry<\/span>\u00a0<\/span><\/li>\n
    • Accept admin permissions for the created application<\/span>\u00a0<\/span><\/li>\n<\/ul>\n

      Once these steps have been completed, we can use certificate-based authentication with a private key to obtain an „Access Token“ in the OAuth flow.<\/span>\u00a0<\/span><\/p>\n

      Configuration with CiraSync On-Prem<\/span><\/b>\u00a0<\/span><\/h3>\n

      This section outlines how to configure certificate-based authorization with the CiraSync On-Prem application. Note that all methods will require Global Administrator access in the Azure Tenant and credentials will be used only for the configuration process per time. CiraSync On-Prem will not save this information anywhere.\u202f<\/span>\u00a0<\/span><\/p>\n

      The naming convention for entries that will be created by CiraSync On-Prem on the Azure side:<\/span>
      \n<\/span><\/p>\n

      CiraSync On-Prem – certificate-based authorization – (<\/span><\/b>[CiraSync On-Prem service mailbox]<\/span>)<\/span><\/b>\u00a0<\/span><\/p>\n

      CiraSync On-Prem has two methods for configuring certificate-based authorization:<\/span>\u00a0<\/span>\u00a0<\/span><\/p>\n

        \n
      1. The automatic method – this method allows users to configure all necessary steps with minimum user involvement. However, this method requires more permissions that must be accepted from the CiraSync On-Prem Application.<\/span><\/li>\n
      2. The manual method – this method controls all steps that will be made in the Azure portal and requires fewer scope permissions but more permissions from the end-user via the azure portal and PowerShell scripting.<\/span>\u00a0<\/span><\/li>\n<\/ol>\n

        Certificate-Based Authorization with CiraSync On-Prem UCM: The automatic method<\/span><\/b>\u00a0<\/span><\/h4>\n

        This method requires the following permissions:<\/span><\/p>\n

          \n
        1. „Application.ReadWrite.All“ – required to create applications within the Azure tenant<\/span><\/li>\n
        2. „Directory.ReadWrite.All“ – required to create Service Principal Entry<\/span><\/li>\n
        3. „Organization.ReadWrite.All“ – required to access an organization\u2019s info<\/span><\/li>\n
        4. „RoleManagement.ReadWrite.Directory“ – required to create roles for Service Principal<\/span>\u00a0<\/span><\/li>\n<\/ol>\n

          \u00a0<\/span>All these permissions require the „Write“ option which allows CiraSync On-Prem to create new entries within the Azure Tenant.<\/span>\u00a0<\/span><\/p>\n

          User flow<\/span><\/b>\u00a0<\/span><\/h5>\n

          1. Create a certificate manually or automatically with CiraSync On-Prem<\/span><\/p>\n

          \"Creating<\/span><\/p>\n

          2. Select the automatic configuration method.<\/span>\u00a0<\/span><\/p>\n

          \"Selecting<\/span><\/p>\n

          3. Enter your Global Administrator credentials in the Microsoft Login form<\/span><\/p>\n

          \"Entering<\/span><\/p>\n

          4. Accept the necessary permissions described below.<\/span>\u00a0<\/span><\/p>\n

          \"Accepting<\/span><\/p>\n

          5. Run the configuration process and wait until it is completed. <\/span>\u00a0<\/span><\/p>\n

          \"Running<\/span><\/p>\n

          6. Accept admin permissions for the created application.<\/span>\u00a0<\/span><\/p>\n

          \"Accepting<\/span><\/p>\n

          Certificate-Based Authorization with CiraSync On-Prem UCM: The manual method<\/span><\/b>\u00a0<\/span><\/h4>\n

          The manual method requires the following permissions:<\/span>\u00a0<\/span><\/p>\n

            \n
          • „Application.Read.All“ – required to find the application<\/span>\u00a0<\/span><\/li>\n
          • „Organization.Read.All“ – required to read the Organization\u2019s info<\/span>\u00a0<\/span><\/li>\n<\/ul>\n

            \u00a0<\/span>All these permissions require only a „Read“ option since CiraSync On-Prem should read information about the manually configured application and save this into the CiraSync On-Prem database<\/span>\u00a0<\/span>\u00a0<\/span><\/p>\n

            User Flow<\/span><\/b>\u00a0<\/span><\/h5>\n

            1. Create a certificate manually or automatically with CiraSync On-Prem.<\/span>
            \n<\/span><\/p>\n

            \"Creating<\/span><\/p>\n

            2. Select a manual configuration method.<\/span>\u00a0<\/span><\/p>\n

            \"Selecting<\/span><\/p>\n

            3. Execute the PowerShell script that will be provided by the CiraSync On-Prem application. You can find an example of this script in <\/span>Appendix 1<\/span><\/b> at the end of this document. <\/span><\/p>\n

            \"Executing<\/span><\/p>\n

            4.<\/p>\n

            \"Windows<\/span><\/p>\n

            5. Enter your Global Administrator credentials in the Microsoft Login form.<\/span>\u00a0<\/span><\/p>\n

            \"Entering<\/span><\/p>\n

            6. Accept the necessary permissions described below. <\/span>\u00a0<\/span><\/p>\n

            IMPORTANT: <\/span><\/b>Do <\/span>NOT <\/span><\/b>check the box \u201cConsent on behalf of your organization.\u201d\u00a0\u00a0<\/span>\u00a0<\/span><\/p>\n

            \"Accepting
            \n<\/span><\/p>\n

            \u00a0<\/span>IMPORTANT: <\/span><\/b>Do NOT check the box \u201cConsent on behalf of your organization.\u201d\u00a0\u00a0<\/span>\u00a0<\/span><\/p>\n

            \"CiraSync<\/span><\/p>\n

            7. Run the CiraSync On-Prem configuration process – during this step, CiraSync On-Prem will connect to the Azure portal, find the created application, and save the changes in the database.<\/span>\u00a0<\/span><\/p>\n

            \"Running<\/span><\/p>\n

            8. Accept admin permissions for the created application.<\/span>
            \n<\/span><\/p>\n

            Certificate-Based Authorization with CiraSync On-Prem UCM: Azure Portal Configuration<\/span>\u00a0<\/span><\/h2>\n
              \n
            1. Create an application in your tenant with the name <\/span>CiraSync On-Prem – certificate-based authorization – (<\/span><\/b>[CiraSync On-Prem service mailbox]<\/span>).<\/span><\/b>
              \n<\/span><\/li>\n<\/ol>\n

              \"Configuring<\/span><\/p>\n

              \"Configuring<\/span><\/p>\n

              2. Assign the certificate to that applicatio<\/span>n.<\/p>\n

              \"Assigning<\/span><\/p>\n

              3. Configure API permissions for the application.<\/span><\/p>\n

              \"Configuring<\/span><\/p>\n

              4. Create the Service Principal entity and assign it to the application.<\/span>
              \n<\/span><\/p>\n

              \"Assigning<\/span><\/p>\n

              \"Finishing<\/p>\n

              Appendix 1<\/span><\/b>\u00a0<\/span><\/h2>\n

              Below is an example of a PowerShell script to configure certificate-based authorization.\u202f<\/span>\u00a0<\/span><\/p>\n

              This is only an example of a script. A customized script will be provided by CiraSync On-Prem during the configuration process specifically for your environment.<\/span><\/i>\u00a0<\/span><\/p>\n

              \"PowerShell<\/span><\/p>\n

              \"PowerShell<\/span><\/p>\n

              \"PowerShell<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"

              Overview: Certificate-Based Authorization There are multiple ways to programmatically authenticate with Microsoft Azure. The most common method uses an \u201cAccess token\u201d as part of modern authentication techniques. The access token allows the CiraSync On-Prem Unified Contact Manager (UCM) to access Azure resources. However, the lifetime of an \u201cAccess Token is 90 days (about 3 months) […]<\/p>\n","protected":false},"author":13,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"","_et_pb_old_content":"","_et_gb_content_width":"","inline_featured_image":false,"footnotes":""},"categories":[536],"tags":[1180,1179,1181],"ppma_author":[1190],"class_list":["post-10330","post","type-post","status-publish","format-standard","hentry","category-support","tag-certificate-based-authorization","tag-itrezzo","tag-itrezzo-ucm"],"yoast_head":"\nCertificate-Based Authorization with CiraSync On-Prem UCM<\/title>\n<meta name=\"description\" content=\"Certificate-based authorization with CiraSync On-PremUCM: enable secure access using certificates, reduce password risks, and keep Exchange sync compliant and reliable.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/csop.cirasync.com\/de\/support\/certificate-based-authorization-with-csop-ucm\/\" \/>\n<meta property=\"og:locale\" content=\"de_DE\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Certificate-Based Authorization\u00a0with CiraSync On-Prem UCM\" \/>\n<meta property=\"og:description\" content=\"Certificate-based authorization with CiraSync On-PremUCM: enable secure access using certificates, reduce password risks, and keep Exchange sync compliant and reliable.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/csop.cirasync.com\/de\/support\/certificate-based-authorization-with-csop-ucm\/\" \/>\n<meta property=\"og:site_name\" content=\"CiraSync On-Prem - Sync Global Address List and Public Folders\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/itrezzo\" \/>\n<meta property=\"article:published_time\" content=\"2022-04-18T20:14:40+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-03-25T02:21:28+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/csop.cirasync.com\/wp-content\/uploads\/2022\/04\/Create-a-certificate-manually-or-automatically-with-itrezzo.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1188\" \/>\n\t<meta property=\"og:image:height\" content=\"795\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"iog@ciraapps.com\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@itrezzo\" \/>\n<meta name=\"twitter:site\" content=\"@itrezzo\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/support\\\/certificate-based-authorization-with-csop-ucm\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/support\\\/certificate-based-authorization-with-csop-ucm\\\/\"},\"author\":{\"name\":\"iog@ciraapps.com\",\"@id\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/#\\\/schema\\\/person\\\/74e384330ca042154b0a919fbe1fbc3c\"},\"headline\":\"Certificate-Based Authorization\u00a0with CiraSync On-Prem UCM\",\"datePublished\":\"2022-04-18T20:14:40+00:00\",\"dateModified\":\"2026-03-25T02:21:28+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/support\\\/certificate-based-authorization-with-csop-ucm\\\/\"},\"wordCount\":891,\"publisher\":{\"@id\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/support\\\/certificate-based-authorization-with-csop-ucm\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/csop.cirasync.com\\\/wp-content\\\/uploads\\\/2022\\\/04\\\/Create-a-certificate-manually-or-automatically-with-itrezzo-1024x685.jpg\",\"keywords\":[\"Certificate-Based Authorization\",\"itrezzo\",\"itrezzo UCM\"],\"articleSection\":[\"Support\"],\"inLanguage\":\"de\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/support\\\/certificate-based-authorization-with-csop-ucm\\\/\",\"url\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/support\\\/certificate-based-authorization-with-csop-ucm\\\/\",\"name\":\"Certificate-Based Authorization with CiraSync On-Prem UCM\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/support\\\/certificate-based-authorization-with-csop-ucm\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/support\\\/certificate-based-authorization-with-csop-ucm\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/csop.cirasync.com\\\/wp-content\\\/uploads\\\/2022\\\/04\\\/Create-a-certificate-manually-or-automatically-with-itrezzo-1024x685.jpg\",\"datePublished\":\"2022-04-18T20:14:40+00:00\",\"dateModified\":\"2026-03-25T02:21:28+00:00\",\"description\":\"Certificate-based authorization with CiraSync On-PremUCM: enable secure access using certificates, reduce password risks, and keep Exchange sync compliant and reliable.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/support\\\/certificate-based-authorization-with-csop-ucm\\\/#breadcrumb\"},\"inLanguage\":\"de\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/support\\\/certificate-based-authorization-with-csop-ucm\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"de\",\"@id\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/support\\\/certificate-based-authorization-with-csop-ucm\\\/#primaryimage\",\"url\":\"https:\\\/\\\/csop.cirasync.com\\\/wp-content\\\/uploads\\\/2022\\\/04\\\/Create-a-certificate-manually-or-automatically-with-itrezzo-1024x685.jpg\",\"contentUrl\":\"https:\\\/\\\/csop.cirasync.com\\\/wp-content\\\/uploads\\\/2022\\\/04\\\/Create-a-certificate-manually-or-automatically-with-itrezzo-1024x685.jpg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/support\\\/certificate-based-authorization-with-csop-ucm\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Certificate-Based Authorization\u00a0with CiraSync On-Prem UCM\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/#website\",\"url\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/\",\"name\":\"CiraSync On-Prem - Sync Global Address List and Public Folders\",\"description\":\"Sync the GAL and Public Folders to Outlook and smartphones\",\"publisher\":{\"@id\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"de\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/#organization\",\"name\":\"CiraSync On-Prem contact management and sync software\",\"url\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"de\",\"@id\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/csop.cirasync.com\\\/wp-content\\\/uploads\\\/2020\\\/04\\\/logo.png\",\"contentUrl\":\"https:\\\/\\\/csop.cirasync.com\\\/wp-content\\\/uploads\\\/2020\\\/04\\\/logo.png\",\"width\":172,\"height\":40,\"caption\":\"CiraSync On-Prem contact management and sync software\"},\"image\":{\"@id\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/itrezzo\",\"https:\\\/\\\/x.com\\\/itrezzo\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/sync-the-global-address-list-to-an-iphone-android-or-blackberry\",\"https:\\\/\\\/www.youtube.com\\\/channel\\\/UCyAwGMuXo3HPNDpZeBAQyNQ\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/csop.cirasync.com\\\/de\\\/#\\\/schema\\\/person\\\/74e384330ca042154b0a919fbe1fbc3c\",\"name\":\"iog@ciraapps.com\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"de\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/a53a3bfa22a6e4ed6682d08e5c634e2c20be9dfba3e712a07cdbd26d90d24e78?s=96&d=mm&r=gcd31eb4ab373576f41fb6c5a8054fa52\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/a53a3bfa22a6e4ed6682d08e5c634e2c20be9dfba3e712a07cdbd26d90d24e78?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/a53a3bfa22a6e4ed6682d08e5c634e2c20be9dfba3e712a07cdbd26d90d24e78?s=96&d=mm&r=g\",\"caption\":\"iog@ciraapps.com\"}}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Certificate-Based Authorization with CiraSync On-Prem UCM","description":"Certificate-based authorization with CiraSync On-PremUCM: enable secure access using certificates, reduce password risks, and keep Exchange sync compliant and reliable.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/csop.cirasync.com\/de\/support\/certificate-based-authorization-with-csop-ucm\/","og_locale":"de_DE","og_type":"article","og_title":"Certificate-Based Authorization\u00a0with CiraSync On-Prem UCM","og_description":"Certificate-based authorization with CiraSync On-PremUCM: enable secure access using certificates, reduce password risks, and keep Exchange sync compliant and reliable.","og_url":"https:\/\/csop.cirasync.com\/de\/support\/certificate-based-authorization-with-csop-ucm\/","og_site_name":"CiraSync On-Prem - Sync Global Address List and Public Folders","article_publisher":"https:\/\/www.facebook.com\/itrezzo","article_published_time":"2022-04-18T20:14:40+00:00","article_modified_time":"2026-03-25T02:21:28+00:00","og_image":[{"width":1188,"height":795,"url":"https:\/\/csop.cirasync.com\/wp-content\/uploads\/2022\/04\/Create-a-certificate-manually-or-automatically-with-itrezzo.jpg","type":"image\/jpeg"}],"author":"iog@ciraapps.com","twitter_card":"summary_large_image","twitter_creator":"@itrezzo","twitter_site":"@itrezzo","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/csop.cirasync.com\/de\/support\/certificate-based-authorization-with-csop-ucm\/#article","isPartOf":{"@id":"https:\/\/csop.cirasync.com\/de\/support\/certificate-based-authorization-with-csop-ucm\/"},"author":{"name":"iog@ciraapps.com","@id":"https:\/\/csop.cirasync.com\/de\/#\/schema\/person\/74e384330ca042154b0a919fbe1fbc3c"},"headline":"Certificate-Based Authorization\u00a0with CiraSync On-Prem UCM","datePublished":"2022-04-18T20:14:40+00:00","dateModified":"2026-03-25T02:21:28+00:00","mainEntityOfPage":{"@id":"https:\/\/csop.cirasync.com\/de\/support\/certificate-based-authorization-with-csop-ucm\/"},"wordCount":891,"publisher":{"@id":"https:\/\/csop.cirasync.com\/de\/#organization"},"image":{"@id":"https:\/\/csop.cirasync.com\/de\/support\/certificate-based-authorization-with-csop-ucm\/#primaryimage"},"thumbnailUrl":"https:\/\/csop.cirasync.com\/wp-content\/uploads\/2022\/04\/Create-a-certificate-manually-or-automatically-with-itrezzo-1024x685.jpg","keywords":["Certificate-Based Authorization","itrezzo","itrezzo UCM"],"articleSection":["Support"],"inLanguage":"de"},{"@type":"WebPage","@id":"https:\/\/csop.cirasync.com\/de\/support\/certificate-based-authorization-with-csop-ucm\/","url":"https:\/\/csop.cirasync.com\/de\/support\/certificate-based-authorization-with-csop-ucm\/","name":"Certificate-Based Authorization with CiraSync On-Prem UCM","isPartOf":{"@id":"https:\/\/csop.cirasync.com\/de\/#website"},"primaryImageOfPage":{"@id":"https:\/\/csop.cirasync.com\/de\/support\/certificate-based-authorization-with-csop-ucm\/#primaryimage"},"image":{"@id":"https:\/\/csop.cirasync.com\/de\/support\/certificate-based-authorization-with-csop-ucm\/#primaryimage"},"thumbnailUrl":"https:\/\/csop.cirasync.com\/wp-content\/uploads\/2022\/04\/Create-a-certificate-manually-or-automatically-with-itrezzo-1024x685.jpg","datePublished":"2022-04-18T20:14:40+00:00","dateModified":"2026-03-25T02:21:28+00:00","description":"Certificate-based authorization with CiraSync On-PremUCM: enable secure access using certificates, reduce password risks, and keep Exchange sync compliant and reliable.","breadcrumb":{"@id":"https:\/\/csop.cirasync.com\/de\/support\/certificate-based-authorization-with-csop-ucm\/#breadcrumb"},"inLanguage":"de","potentialAction":[{"@type":"ReadAction","target":["https:\/\/csop.cirasync.com\/de\/support\/certificate-based-authorization-with-csop-ucm\/"]}]},{"@type":"ImageObject","inLanguage":"de","@id":"https:\/\/csop.cirasync.com\/de\/support\/certificate-based-authorization-with-csop-ucm\/#primaryimage","url":"https:\/\/csop.cirasync.com\/wp-content\/uploads\/2022\/04\/Create-a-certificate-manually-or-automatically-with-itrezzo-1024x685.jpg","contentUrl":"https:\/\/csop.cirasync.com\/wp-content\/uploads\/2022\/04\/Create-a-certificate-manually-or-automatically-with-itrezzo-1024x685.jpg"},{"@type":"BreadcrumbList","@id":"https:\/\/csop.cirasync.com\/de\/support\/certificate-based-authorization-with-csop-ucm\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/csop.cirasync.com\/de\/"},{"@type":"ListItem","position":2,"name":"Certificate-Based Authorization\u00a0with CiraSync On-Prem UCM"}]},{"@type":"WebSite","@id":"https:\/\/csop.cirasync.com\/de\/#website","url":"https:\/\/csop.cirasync.com\/de\/","name":"CiraSync On-Prem - Sync Global Address List and Public Folders","description":"Sync the GAL and Public Folders to Outlook and smartphones","publisher":{"@id":"https:\/\/csop.cirasync.com\/de\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/csop.cirasync.com\/de\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"de"},{"@type":"Organization","@id":"https:\/\/csop.cirasync.com\/de\/#organization","name":"CiraSync On-Prem contact management and sync software","url":"https:\/\/csop.cirasync.com\/de\/","logo":{"@type":"ImageObject","inLanguage":"de","@id":"https:\/\/csop.cirasync.com\/de\/#\/schema\/logo\/image\/","url":"https:\/\/csop.cirasync.com\/wp-content\/uploads\/2020\/04\/logo.png","contentUrl":"https:\/\/csop.cirasync.com\/wp-content\/uploads\/2020\/04\/logo.png","width":172,"height":40,"caption":"CiraSync On-Prem contact management and sync software"},"image":{"@id":"https:\/\/csop.cirasync.com\/de\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/itrezzo","https:\/\/x.com\/itrezzo","https:\/\/www.linkedin.com\/company\/sync-the-global-address-list-to-an-iphone-android-or-blackberry","https:\/\/www.youtube.com\/channel\/UCyAwGMuXo3HPNDpZeBAQyNQ"]},{"@type":"Person","@id":"https:\/\/csop.cirasync.com\/de\/#\/schema\/person\/74e384330ca042154b0a919fbe1fbc3c","name":"iog@ciraapps.com","image":{"@type":"ImageObject","inLanguage":"de","@id":"https:\/\/secure.gravatar.com\/avatar\/a53a3bfa22a6e4ed6682d08e5c634e2c20be9dfba3e712a07cdbd26d90d24e78?s=96&d=mm&r=gcd31eb4ab373576f41fb6c5a8054fa52","url":"https:\/\/secure.gravatar.com\/avatar\/a53a3bfa22a6e4ed6682d08e5c634e2c20be9dfba3e712a07cdbd26d90d24e78?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/a53a3bfa22a6e4ed6682d08e5c634e2c20be9dfba3e712a07cdbd26d90d24e78?s=96&d=mm&r=g","caption":"iog@ciraapps.com"}}]}},"authors":[{"term_id":1190,"user_id":13,"is_guest":0,"slug":"ikimi","display_name":"iog@ciraapps.com","avatar_url":"https:\/\/secure.gravatar.com\/avatar\/a53a3bfa22a6e4ed6682d08e5c634e2c20be9dfba3e712a07cdbd26d90d24e78?s=96&d=mm&r=g","0":null,"1":"","2":"","3":"","4":"","5":"","6":"","7":"","8":""}],"_links":{"self":[{"href":"https:\/\/csop.cirasync.com\/de\/wp-json\/wp\/v2\/posts\/10330","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/csop.cirasync.com\/de\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/csop.cirasync.com\/de\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/csop.cirasync.com\/de\/wp-json\/wp\/v2\/users\/13"}],"replies":[{"embeddable":true,"href":"https:\/\/csop.cirasync.com\/de\/wp-json\/wp\/v2\/comments?post=10330"}],"version-history":[{"count":3,"href":"https:\/\/csop.cirasync.com\/de\/wp-json\/wp\/v2\/posts\/10330\/revisions"}],"predecessor-version":[{"id":13507,"href":"https:\/\/csop.cirasync.com\/de\/wp-json\/wp\/v2\/posts\/10330\/revisions\/13507"}],"wp:attachment":[{"href":"https:\/\/csop.cirasync.com\/de\/wp-json\/wp\/v2\/media?parent=10330"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/csop.cirasync.com\/de\/wp-json\/wp\/v2\/categories?post=10330"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/csop.cirasync.com\/de\/wp-json\/wp\/v2\/tags?post=10330"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/csop.cirasync.com\/de\/wp-json\/wp\/v2\/ppma_author?post=10330"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}