Configuring Ocsp Services; Setting Up Crls; Setting Up Notifications - Red Hat CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR Administrator's Manual
Hide thumbs
Also See for CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR:
Table of Contents
Advertisement
Configuring the Certificate Manager
Configuring OCSP Services
The Certificate Manager contains an internal OCSP responder which is installed by default.
The OCSP responder receives standard OCSP requests via the non-SSL end-entity port. It
checks the status of certificates in the internal database and then reports back on the status
of the certificate.
The Online Certificate Status Manager is a stand-alone subsystem that a Certificate
Manager publishes CRLs to. This subsystem receives standard OCSP requests for
certificate status and checks the CRLs to see if the certificate has been revoked. This
subsystem can be configured with more than one Certificate Manager.
See Chapter 5, "OCSP Responder" for information about both of these services.
Setting Up CRLs
The CRL feature allows you to set up CRLs that are issued on a periodic basis. You can also
define issuing points so that a CRL from that issuing point contains only the list of revoked
certificates associated with that issuing point. You can also create delta CRLS. When you
install, the CRL feature is setup, but the creation of CRLs is disabled. You need to enable it
and configure issuing points to issue CRLs. For detailed information on setting up CRLs,
see Chapter 15, "Revocation and CRLs."
Setting Up Notifications
The notification feature that allows you to send automated notifications is disabled after
installation. You can set up three types of automatic notifications:
•
Certificate Issuance. An email is sent to the end entity when a certificate is issued.
•
Certificate Revoked. An email is sent to an end entity when a certificate is revoked.
•
Request In Queue. An email is sent to agents when a request is received in the agent
services interface request queue.
You need to enable and configure notifications in order to use this feature. For detailed
information on setting up notifications, see Chapter 13, "Automated Notifications."
114
Red Hat Certificate System Administrator's Guide • September 2005
Advertisement
Table of Contents
Related Manuals for Red Hat CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR
Related Products for Red Hat CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR
- Red Hat CERTIFICATE SYSTEM 7.0 - MIGRATION GUIDE
- Red Hat CERTIFICATE SYSTEM 7.3 - ADMINISTRATION
- Red Hat LINUX 7.2 - S-390
- Red Hat LINUX 7.1 - PSERIES
- Red Hat SYSTEM 8.0 - MIGRATION GUIDE 7.X TO 8.0
- Red Hat CERTIFICATE SYSTEM 7.2 - AGENT GUIDE
- Red Hat DIRECTORY SERVER 7.1 SP7 - S
- Red Hat Application Server
- Red Hat APPLICATION SERVER - JONAS
- Red Hat APPLICATION STACK 1.1 RELEASE
- Red Hat APPLICATION STACK 1.2 RELEASE
- Red Hat APPLICATION STACK 1.3 RELEASE
- Red Hat APPLICATION STACK 1.4 RELEASE
- Red Hat APPLICATION STACK 2.0 RELEASE
- Red Hat APPLICATION STACK 2.1 RELEASE
- Red Hat APPLICATION STACK 2.2 RELEASE
Need help?
Do you have a question about the CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR and is the answer not in the manual?