Red Hat Certificate System Agent Guide 7.2

Next

Red Hat Certificate System Agent Guide 7.2

Copyright © 2006 Red Hat, Inc.

Legal Notice

Abstract

This manual is for agents of Certificate System subsystems. This guide explains the different agent services interfaces for the Certificate System subsystems and details the agent operations which can be performed. This information is used to manage and maintain certificates and keys for users in the PKI deployment.

Table of Contents

About This Guide

1. Who Should Read This Guide
2. Required Concepts
3. What Is in This Guide
4. Conventions Used in This Guide
5. Documentation

1. Agent Services

1.1. Overview of Certificate System

1.2. Agent Tasks

1.2.1. Certificate Manager Agent Services
1.2.2. Data Recovery Manager Agent Services
1.2.3. Online Certificate Status Manager Agent Services
1.2.4. TPS Agent Services

1.3. Forms for Performing Agent Operations

1.4. Accessing Agent Services

2. CA: Working with Certificate Profiles

2.1. About Certificate Profiles

2.1.1. Profile Definition
2.1.2. Categories of Certificate Profiles

2.2. Basic Profile Operations for an Agent

2.3. List of Certificate Profiles

2.3.1. Example Profile

2.4. How Certificate Profiles Work

2.5. Enabling and Disabling Certificate Profiles

2.5.1. Getting Certificate Profile Information
2.5.2. End User Certificate Profile
2.5.3. Policy Information
2.5.4. Approving a Certificate Profile
2.5.5. Disapproving a Certificate Profile

3. CA: Handling Certificate Requests

3.1. Managing Requests

3.2. Listing Certificate Requests

3.2.1. Selecting a Request
3.2.2. Searching Requests

3.3. Approving Requests

3.4. Sending an Issued Certificate to the Requester

4. CA: Finding and Revoking Certificates

4.1. Basic Certificate Listing

4.2. Advanced Certificate Search

4.3. Examining Certificates

4.4. Revoking Certificates

4.4.1. Searching for Certificates to Revoke
4.4.2. Revoking One or More Certificates

4.5. Managing the Certificate Revocation List

4.5.1. Viewing or Examining CRLs
4.5.2. Updating the CRL

5. CA: Publishing to a Directory

5.1. Automatic Directory Updates
5.2. Manual Directory Updates

6. DRM: Recovering Encrypted Data

6.1. List Requests

6.2. Finding and Recovering Keys

6.2.1. Finding Archived Keys
6.2.2. Recovering Keys

7. OCSP: Agent Services

7.1. Listing CAs Identified by the OCSP
7.2. Identifying a CA to the OCSP
7.3. Adding a CRL to the OCSP
7.4. Checking the Revocation Status of a Certificate

8. TPS: Agent Services

8.1. Basic Operations for an Agent and Administrator

8.2. Adding Tokens

8.3. Managing Tokens

8.3.1. Changing Token Status
8.3.2. Editing the Token
8.3.3. Listing Token Certificates
8.3.4. Conflicting Token Certificate Status Information
8.3.5. Showing Token Activities

8.4. Listing and Searching Certificates

8.5. Searching Token Activities

8.6. Administrator Operations

8.6.1. Showing Token Activities
8.6.2. Editing the Token
8.6.3. Deleting the Token

NextAbout This Guide