The image shows the process flow when using the OCI Certificates certificate authority (CA) to sign a certificate.

An end user or client sends an HTTPS request to one of several services requiring a certificate and private key. A private key is used to generate a certificate signing request (CSR) (for example by using OpenSSL) and the CSR is sent to the OCI Certificates CA. The CA sends a signed certificate to the services the end user or client is interacting with.