All of the examples for Red Hat Certificate System commands, file locations, and other usage are given for Red Hat Enterprise Linux 4 (32 bit) systems. Be certain to use the appropriate commands and files for your platform.
To start the Red Hat Certificate System:
/etc/init.d/rhpki-ca start
All of the tools for Red Hat Certificate System are located in the /usr/bin directory. These tools can be run from any location without specifying the tool location.
There is another important consideration with the LDAP utilities. The LDAP tools referenced in this guide are Mozilla LDAP, installed with Red Hat Certificate System in the /usr/dir/mozldap directory on Red Hat Enterprise Linux.
However, Red Hat Enterprise Linux systems also include LDAP tools from OpenLDAP in the /usr/bin directory. It is possible to use the OpenLDAP commands as shown in the examples, but you must use the -x argument to disable SASL, which OpenLDAP tools use by default.
After Errata RHSA-2009:0007, Certificate System 7.3 supports port separation. Port separation means that the different subsystem services for administrators, agents, and end entities run on different, user-defined ports.
The default subsystem instances, however, are configured to use a single secure port for all services. Therefore, any example commands or files reference these default ports.
| Susbsystem | SSL Port | Non-SSL Port |
|---|---|---|
| CA | 9443 | 9080 |
| RA | 12889 | 12888 |
| DRM | 10443 | 10080 |
| OCSP | 11443 | 11080 |
| TKS | 13443 | 13080 |
| TPS | 7889 | 7888 |
Certain words are represented in different fonts, styles, and weights. Different character formatting is used to indicate the function or purpose of the phrase being highlighted.
| Formatting Style | Purpose |
|---|---|
Monospace font
| Monospace is used for commands, package names, files and directory paths, and any text displayed in a prompt. |
Monospace with a background | This type of formatting is used for anything entered or returned in a command prompt. |
| Italicized text | Any text which is italicized is a variable, such as instance_name or hostname. Occasionally, this is also used to emphasize a new term or other phrase. |
| Bolded text | Most phrases which are in bold are application names, such as Cygwin, or are fields or options in a user interface, such as a User Name Here: field or Save button. |
Other formatting styles draw attention to important text.
A note provides additional information that can help illustrate the behavior of the system or provide more detail for a specific issue.
Important information is necessary, but possibly unexpected, such as a configuration change that will not persist after a reboot.
A warning indicates potential data loss, as may happen when tuning hardware for maximum performance.