Red Hat CERTIFICATE SYSTEM 7.3 - AGENT GUIDE Manual page 33

• Key generation Specifies that the key pair generation during the request submission be CRMF-
based and 1024-bit. This is a read-only field.
• Subject name The subject name input is used when distinguished name (DN) parameters need to
be collected from the user; the user DN can be used to create the subject name in the certificate.
This input uses the following form fields:
• UID The user ID of the user in the LDAP directory.
• Email The email address of the user.
• Common name The name of the user.
• Organizational unit The organizational unit to which the user belongs.
• Organization The organization name.
• Country The country where the user is located.
• Requester This input uses the following form fields:
• Requester name The name of the certificate requester.
• Requester email The email address of the certificate requester.
• Requester phone The phone number of the certificate requester.
• Profile policy sets
The different policy sets that are set by default on caUserCert are listed in
Profile Policy Sets".
Profile Policy Set
userCertSet.1 (SubjectName)
userCertSet.2 (Validity)
userCertSet.3 (Key)
Defaults
No defaults
range = 180 days
No defaults
Example Profile
Table 3.2, "caUserCert
Constraints
The range is less than 365
days. The notbefore and
notafter date checks are
turned off.
keytype = RSA
1
keyminLength = 512
keymaxLength = 4096
2
27