See below for considerations on interoperating with Security Toolkit 9.0 for Java.

Entrust Authority roaming server limitations

Although the Toolkit provides flexible options for key-type support, not all products have been updated with this support. To use the Toolkit's roaming capabilities with the roaming server, the user must have a signing key.

Older versions of Roaming Server may support only either 1024-bit or 2048-bit RSA user keys and TLS 1.0. Longer key lengths cause failure in older versions of the roaming server. Check the roaming server documentation for more information.

Using ECDSA in an Entrust PKI

You should be aware of the following constraints when using the Elliptic Curve Digital Signature Algorithm (ECDSA) with an Entrust PKI:

There is no support for compressed curve points.
There is no support for Normal Basis Curve representation.