Chapter 8. TPS: Agent Services
This chapter describes how to perform Token Processing System (TPS) agent tasks, such as listing smart card tokens and resetting card PINs. Agents can manage the smart cards and the certificates stored on the cards. The TPS agent services page allows authorized agents to accomplish these tasks.
Smart cards are also referred to as tokens in this chapter and in the TPS agent and admin services pages.
The TPS agent services page contains two tabs, one for agent operations and one for administrator operations. The agent operations cover routine token management such as setting the token status, searching and listing tokens and certificates, resetting token PINs, and searching the TPS internal database. The administrator page has additional options to add and delete tokens from the database.
An administrator user is created when the TPS instance is first configured. This user has both administrator and agent privileges. The administrator can create additional agents by creating new user entries in the LDAP database. For more information on creating users in the Red Hat Directory Server, see the Directory Server Administration Guide.
There is no HTML end-entities page for TPS services since end-entity tasks are performed through the Enterprise Security Client.
The TPS agent tasks include the following:
Listing tokens.
Adding new tokens by token CUID.
Editing token attribute token policies.
Searching tokens by CUID or user ID.
Listing certificates associated with tokens.
Searching certificates by token CUID or user ID.
Listing activities associated with the tokens by the token CUID.
Searching activities by the token CUID.
Changing token status.
Administrators can perform all of the agent operations, as well as the following:
Editing the token attributes, such as the user ID, and the reason for the token status.
Deleting a token.