This guide contains the following topics:
| Chapter 1, Create and Remove Instance Tools | Describes the tools used to create and remove subsystem instances. |
| Chapter 2, Silent Installation | Describes the tool used for a silent instance creation. |
| Chapter 3, TokenInfo | Describes the utility which can be used to identify tokens on a machine, which shows whether the Certificate System can detect those tokens to use for a subsystem. |
| Chapter 4, SSLGet | Describes a tool used by the Certificate System to help configure and use security domains. |
| Chapter 5, AuditVerify | Describes how to use the tool used to verify signed audit logs. |
| Chapter 6, PIN Generator | Describes how to use the tool for generating unique PINs for end users and for populating their directory entries with PINs. |
| Chapter 7, ASCII to Binary | Describes how to use the tool for converting ASCII data to its binary equivalent. |
| Chapter 8, Binary to ASCII | Describes how to use the tool for converting binary data to its ASCII equivalent. |
| Chapter 9, Pretty Print Certificate | Describes how to use the tool for printing or viewing the contents of a certificate stored as ASCII base-64 encoded data in a human-readable form. |
| Chapter 10, Pretty Print CRL | Describes how to use the tool for printing or viewing the contents of a CRL stored as ASCII base-64 encoded data in a human-readable form. |
| Chapter 11, TKS Tool | Describes how to manipulate symmetric keys, including keys stored on tokens, the TKS master key, and related keys and databases. |
| Chapter 12, CMC Request | Describes how to construct a Certificate Management Messages over Cryptographic Message Syntax (CMC) request. |
| Chapter 13, CMC Enrollment | Describes how to sign a CMC certificate enrollment request with an agent's certificate. |
| Chapter 14, CMC Response | Describes how to parse a CMC response. |
| Chapter 15, CMC Revocation | Describes how to sign a CMC revocation request with an agent's certificate. |
| Chapter 16, CRMF Pop Request | Describes how to generate Certificate Request Message Format (CRMF) requests with proof of possession (POP). |
| Chapter 17, Extension Joiner | Describes how to use the tool for joining MIME-64 encoded formats of certificate extensions to create a single blob. |
| Chapter 18, Key Usage Extension | Describes how to generate a distinguished encoding rules (DER)-encoded Extended Key Usage extension. |
| Chapter 19, Issuer Alternative Name Extension | Describes how to generate an Issuer Alternative Name extension in base-64 encoding. |
| Chapter 20, Subject Alternative Name Extension | Describes how to generate a Subject Alternative Name extension in base-64 encoding. |
| Chapter 21, HTTP Client | Describes how to communicate with any HTTP/HTTPS server. |
| Chapter 22, OCSP Request | Describes how to verify certificate status by submitting Online Certificate Status Protocol (OCSP) requests to an instance of an OCSP subsystem. |
| Chapter 23, PKCS #10 Client | Describes how to generate a Public-Key Cryptography Standards (PKCS) #10 enrollment request. |
| Chapter 24, Bulk Issuance Tool | Describes how to send either a KEYGEN or CRMF enrollment request to the bulk issuance interface to create certificates automatically. |
| Chapter 25, Revocation Automation Utility | Describes how to automate user management scripts to revoke certificates. |
| Chapter 26, tpsclient | Describes how to test the TPS configuration and common operations. |
Table 1. List of Contents