Manage your organization identities
Deprecated notice
Consortium networks have been deprecated. This guide is for historical reference.
You can add and delete new identities in your organization vault.
Chainstack currently supports identity management for the following networks:
- Hyperledger Fabric networks
- Corda Network
- Corda Pre-Production Network
Manage your Hyperledger Fabric identity
A Hyperledger Fabric identity is a private key and a certificate. See Hyperledger Fabric documentation: Identity.
A Hyperledger Fabric identity issuer is the entity issuing certificates. Chainstack supports cryptogen or Fabric CA as an identity issuer.
Each organization on Chainstack must have an identity and an identity issuer to deploy a Hyperledger Fabric network or add a node to an existing network.
Add a new identity
By default, your identity is issued automatically by cryptogen.
If you would like to use Fabric CA as identity issuer, contact Chainstack.
View an identity
To view an identity:
Navigate to your vault.
Click Identities and select the identity to view.
This will show the details of the identity.
Add a new identity issuer
Navigate to your vault.
Click Issuers > Add.
Select Hyperledger Fabric.
This will add an identity issuer and create an admin identity.
View an identity issuer
To view an identity issuer:
Navigate to your vault.
Click Issuers and select the identity issuer to view.
This will show the details of the identity issuer.
Export an identity
To export an identity:
This will download the identity private key and certificate files.
Export an identity issuer
To export an identity issuer:
This will download the identity issuer private key and certificate files.
Delete an identity
You can only delete an identity by deleting its issuer.
Delete an identity issuer
You can only delete an identity issuer after deleting the associated network.
Navigate to your vault and select the identity issuer to delete.
Click the trash bin icon next to the identity issuer.
This will irrevocably delete both the identity and the identity issuer private keys and certificate files.
Manage your Corda identity
A Corda identity consists of the following Java KeyStore (JKS) files:
nodekeystore.jks— a keystore with the node’s identity key pairs and certificates; protected by Keystore password.sslkeystore.jks— a keystore with the node’s TLS key pair and certificate; protected by Keystore password.truststore.jks— a keystore with the network operator’s root certificate; protected by Truststore password.
Add a new identity
Complete steps 1 and 2 of the Corda Onboarding Workflow guide.
On Chainstack, navigate to your vault. Click Add identity.
Under Issuing network, select Corda Network or Corda Pre-Production Network. Click Next.
Under Identification, provide the email and X.500 name that you used to sign up with the Corda Network Foundation.
This will send the new certificate signing request to the Corda Network Foundation. Once the Corda Network Foundation approves your request, you will be able to deploy your nodes in Corda Network or Corda Pre-Production Network using this identity.
View an identity
To view an identity:
Navigate to your vault.
Click Identities and select the identity to view.
This will show the details of the identity.
Export an identity
You may want to export your existing identity from the vault to host a Corda node elsewhere as part of Corda Network or Corda Pre-Production Network.
To export an identity:
Navigate to your vault and select the identity to export.
This will download the identity keystore files.
Delete an identity
Navigate to your vault and select the identity to delete.
This will irrevocably delete the identity keystore files.