Chapter 1. Overview

1.1. Features

1.1.1. Subsystems
1.1.2. Interfaces
1.1.3. Logging
1.1.4. Auditing
1.1.5. Self-Tests
1.1.6. Authorization
1.1.7. Security-Enhanced Linux Support
1.1.8. Authentication
1.1.9. Registration Authority
1.1.10. SCEP
1.1.11. Certificate Issuance
1.1.12. Certificate Profiles
1.1.13. CRLs
1.1.14. Publishing
1.1.15. Notifications
1.1.16. Jobs
1.1.17. Dual Key Pairs
1.1.18. HSMs and Crypto Accelerators
1.1.19. Support for Open Standards
1.1.20. Java™ SDK Extension Mechanism for Customization

1.2. How the Certificate System Works

1.2.1. About the Certificate Manager
1.2.2. How the Certificate Manager Works
1.2.3. Data Recovery Manager
1.2.4. Online Certificate Status Manager
1.2.5. Token Key Service
1.2.6. Token Processing System

1.3. Deployment Scenarios

1.3.1. Single Certificate Manager
1.3.2. Certificate Manager and DRM
1.3.3. Cloned Certificate Manager
1.3.4. Smart Card Enrollment

1.4. System Architecture

1.4.1. Certificate System Instance
1.4.2. HTTP Engine
1.4.3. User Interfaces
1.4.4. JSS and the JNI Layer
1.4.5. NSS
1.4.6. PKCS #11
1.4.7. Management Tools
1.4.8. JRE
1.4.9. Internal Database
1.4.10. SSL/TLS and Supported Cipher Suites

1.5. CS SDK

1.6. Support for Open Standards

1.6.1. Certificate Management Formats and Protocols
1.6.2. Security and Directory Protocols

This chapter provides an overview of Red Hat Certificate System, a highly configurable set of software components and tools for creating, deploying, and managing certificates. Based on open standards for certificate management, Certificate System provides a complete, customizable, robust, scalable, and high-performance certificate management solution for public-key infrastructure (PKI), extranets, and intranets.