2.4.1. Certificate System Instance
Within the Certificate System component, a set of common modules, which can all be extended with custom Java™ plug-ins, are provided for all subsystems. Although some may not be used in the default setting, they are available for further customization.
Authentication.
Authorization. The default is access control from the internal LDAP database.
ACL evaluators. The default is to use user/group evaluators.
Certificate profiles, which have customizable extensions and constraints.
The job scheduler, which can be edited to control routinely-scheduled events.
Email notification.
Event listeners.
Publishing. Both the publisher and mapper can be modified.
Logging, including signed audit logs. The logging mechanism can be extended.
Self-tests. Both the start-up and manually-initiated self-tests can be extended.
Servlets, depending on subsystem installation.
Password quality checker.