Key generation for abis partner

aouahli99 · March 11, 2026, 9:11am

Hello,

I noticed that mpartner-default-abis was not present in the key_alias table. I therefore tried to upload the certificate provided in the documentation, but it was already expired

After uploading a new certificate that I generated, I started encountering an issue during the decryption step in mock-abis. This suggests that there is a key generation process that should have been performed beforehand, which I might have missed.

Could you please guide me on the correct procedure to generate the required keys? I also attempted to use the Key Manager UI in admin portal, but I could not proceed because the PARTNER application ID was not available as an input option.

I attempted to generate a CSR in KeyManager using the following parameters:

applicationId: PARTNER

referenceId: mpartner-default-abis

However, the API returned the following error:

KER-KMS-002 - ApplicationId not found in Key Policy. Key/CSR generation not allowed.

At the same time, the KeyManager logs indicate that during the ABIS flow the certificate lookup is performed with the same values:

applicationId: PARTNER

referenceId: mpartner-default-abis

Could you please provide guidance on how we should proceed so that we can successfully validate ABIS as a partner and complete the UIN generation process?

mrudula_ch · March 12, 2026, 3:56am

Hi aouahli99

Thank you for reaching out to us. Let us check on the issue and revert back to you as soon as possible
Regards,
Mrudula
on behalf of Team MOSIP

aouahli99 · March 12, 2026, 12:18pm

ok thanks a lot ,i will be waiting for your response

aouahli99 · March 17, 2026, 9:20am

Hello @mrudula_ch ,

Any update please

Thanks

Mahesh-Binayak · March 18, 2026, 6:58am

HI @aouahli99
hope u are well, This document that you mentioned had expired certificates, can u share the link to same ?
also this abis partner is a static one s, so you are right to expect failure, when u try to use self generated certificates.

You can follow mosip-infra/deployment/sandbox-v2/docs/abiscert.md at 05e4d91f9c7bccf60774017f37836a1ed15d2a5c · mosip/mosip-infra
this doc for uploading the correct certificates.

Thanks
Mahesh

aouahli99 · March 19, 2026, 10:01am

Hello @Mahesh-Binayak ,

Here is the link : mosip-infra/deployment/v3/mosip/mock-abis/certs_upload/postman/collection.json at v1.2.0.2 · mosip/mosip-infra

im installing V3, the link you shared will work?

Thanks in advance

Mahesh-Binayak · March 20, 2026, 6:04am

hi @aouahli99
Yes this link will work for any versions deployed after 1.1. 5
thanks and regards
Mahesh Binayak

system · March 30, 2026, 6:05am

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Authentication-demo-ui Tutorial Developer	19	720	February 27, 2023
IDA-AUTHENTICATION authentication-demo-ui Developer keymanager , security , certification	1	541	January 27, 2023
ID-Authentication certificate ( applicationId = IDA, refrenceId=PARTNER ) Developer	3	324	February 7, 2023
MOSIP 1.2.0.1-B3 partner onboard issue Developer	6	430	August 23, 2023
Integration Issues with ABIS, how to get clientId, secretKey, etc Developer	4	291	December 22, 2023

Key generation for abis partner

Related topics