Chapter 17. User and Group Authorization

17.1. About Authorization

17.1.1. How Authorization Works
17.1.2. Default Groups

17.2. Creating Users

17.3. Setting up a Trusted Manager

17.4. Modifying Certificate System User Entries

17.4.1. Changing a Certificate System User's Login Information
17.4.2. Changing a Certificate System User's Certificate
17.4.3. Changing Members in a Group
17.4.4. Deleting a Certificate System User

17.5. Creating a New Group

17.6. Authorization for Certificate System Users

17.6.1. Access Control Lists (ACLs)
17.6.2. Access Control Instructions (ACIs)
17.6.3. Changing Privileges
17.6.4. How ACIs Are Formed
17.6.5. Editing ACLs

17.7. ACL Reference

17.7.1. certServer.acl.configuration
17.7.2. certServer.admin.certificate
17.7.3. certServer.admin.request.enrollment
17.7.4. certServer.auth.configuration
17.7.5. certServer.ca.certificate
17.7.6. certServer.ca.certificates
17.7.7. certServer.ca.configuration
17.7.8. certServer.ca.connector
17.7.9. certServer.ca.clone
17.7.10. certServer.ca.crl
17.7.11. certServer.ca.directory
17.7.12. certServer.ca.group
17.7.13. certServer.ca.ocsp
17.7.14. certServer.ca.profiles
17.7.15. certServer.ca.profile
17.7.16. certServer.ca.requests
17.7.17. certServer.ca.request.enrollment
17.7.18. certServer.ca.request.profile
17.7.19. certServer.ca.systemstatus
17.7.20. certServer.ee.certificate
17.7.21. certServer.ee.certificates
17.7.22. certServer.ee.certchain
17.7.23. certServer.ee.crl
17.7.24. certServer.ee.profile
17.7.25. certServer.ee.profiles
17.7.26. certServer.ee.facetofaceenrollment
17.7.27. certServer.ee.request.enrollment
17.7.28. certServer.ee.request.facetofaceenrollment
17.7.29. certServer.ee.request.ocsp
17.7.30. certServer.ee.request.revocation
17.7.31. certServer.ee.requestStatus
17.7.32. certServer.general.configuration
17.7.33. certServer.job.configuration
17.7.34. certServer.kra.certificate.transport
17.7.35. certServer.kra.configuration
17.7.36. certServer.kra.connector
17.7.37. certServer.kra.key
17.7.38. certServer.kra.keys
17.7.39. certServer.kra.request
17.7.40. certServer.kra.requests
17.7.41. certServer.kra.request.status
17.7.42. certServer.kra.systemstatus
17.7.43. certServer.log.configuration
17.7.44. certServer.log.configuration.SignedAudit.expirationTime
17.7.45. certServer.log.configuration.fileName
17.7.46. certServer.log.content.SignedAudit
17.7.47. certServer.log.content
17.7.48. certServer.ocsp.ca
17.7.49. certServer.ocsp.cas
17.7.50. certServer.ocsp.certificate
17.7.51. certServer.ocsp.configuration
17.7.52. certServer.ocsp.crl
17.7.53. certServer.profile.configuration
17.7.54. certServer.publisher.configuration
17.7.55. certServer.registry.configuration
17.7.56. certServer.usrgrp.administration

This chapter explains how to set up authorization for access to the administrative, agent services, and end-entities pages.