Red Hat CERTIFICATE SYSTEM 7.2 - AGENT GUIDE Manual page 16

Form name
Display Revocation List
List Requests (DRM)
Search for Keys (DRM)
Recover Keys (DRM)
Authorize Recovery (DRM)
List Certificate Authorities (Online Certificate Status Man-
ager)
Add Certificate Authority (Online Certificate Status Man-
ager)
Add Certificate Revocation List (Online Certificate Status
Manager)
Check Certificate Status (Online Certificate Status Man-
ager)
Manage Certificate Profiles (CA)
OCSP Service (CA)
List Tokens (TPS)
Search Tokens (TPS)
List Certificates (TPS)
Search Certificates (TPS)
List Activities (TPS)
Search Activities (TPS)
3. Forms for Performing Agent
Operations
Description
ber of results to display.
Used to view the current CRL. The display can be custom-
ized by the issuing point and display type. Clicking on the
CRL number will display the time taken to generate this
CRL, known as the CRL split time.
Used by DRM agents to find and examine requests for key
services. For instructions on using this form, see Section 1,
"List Requests".
Used by DRM agents to find and list specific archived
keys. For instructions on using this form, see Section 2,
"Finding and Recovering Keys".
Used by DRM agents to find and recover specific archived
keys. A key in the list returned by a search is selected and
its recovery is initiated; the recovery must be authorized by
designated key recovery agents. For instructions on using
this form, see Section 2.2, "Recovering Keys".
Used to authorize a key recovery request remotely that was
initiated by another DRM agent. For instructions on using
this form, see Section 2.2, "Recovering Keys".
Used to list Certificate Managers that are currently con-
figured to publish their CRLs to the Online Certificate
Status Manager. For instructions, see Section 1, "Listing
CAs Identified by the OCSP".
Used to identify a Certificate Manager to the Online Certi-
ficate Status Manager. For instructions, see Section 2,
"Identifying a CA to the OCSP".
Used to add a CRL to the Online Certificate Status Man-
ager's internal database. For instructions, see Section 3,
"Adding a CRL to the OCSP".
Used to check the status of OCSP service requests sent by
OCSP-compliant clients. For instructions, see Section 4,
"Checking the Revocation Status of a Certificate".
Used to enable and disable supported certificate profiles.
Once a profile is disabled, the administrator can make
changes to the profile by editing the profile configuration
files or through the Console.
Used to manage the operation of the CA's internal OCSP
service.
Used to list all the enrolled tokens, which shows all of the
tokens enrolled by the TPS and basic information about the
token. See Section 3, "Managing Tokens".
Used to search for the tokens by either user ID for the user
issued the token or by the contextually unique ID (CUID)
of the token. See Section 3, "Managing Tokens".
Used to list all certificates on the token. See Section 4,
"Listing and Searching Certificates".
Used to search for certificates stored on the tokens by
either user ID for the user issued the certificate or by the
contextually unique ID (CUID) of the token. See Section 4,
"Listing and Searching Certificates".
Used to list all operations performed through the TPS. See
Section 5, "Searching Token Activities".
Used to search for operations performed through the TPS.
9 Chapter 1. Agent Services