Configuring Self Test; Setting Up A Mail Server; Setting Up Authentication - Red Hat CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR Administrator's Manual
Hide thumbs
Also See for CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR:
Table of Contents
Advertisement
Configuring a Registration Manager
Configuring Self Test
Each subsystem provides self tests that are run on start up and can also be run on demand.
This feature is configurable, see "Self Tests," on page 272 for complete information.
Setting Up a Mail Server
If the subsystem will be sending out email notifications, you can configure the subsystem to
use a mail server, see "Mail Server," on page 250.
Setting Up Authentication
The first step in configuring enrollment is setting up authentication. You can set up more
than one type of authentication. Each type you set up must be associated with a particular
form in the interface. If you are using the certificate profile feature for enrollments, the
forms are dynamically generated with the content being determined by the inputs you set
for a particular certificate profile. You can even set up the same method of authentication
and associated more than one form with it. You might do this if you wanted to change other
aspects of the enrollment.
For example, you might want to create an automated authentication that requires LDAP
authentication. You have two classes of employees, permanent and temporary. You want to
issue both classes of employees certificates using LDAP authentication, but you want to
issue each of these classes certificates with different validity periods and different
extensions. You can create two different forms, both using LDAP authentication, but each
having different policies associated with the form.
You can configure the authentication method to be agent-approved or automated.
The agent-approved enrollment, in-person agent initiated enrollment, and CMC enroll
methods are enabled and configured when you install the Registration Manager. In order to
enable and configure one of the automated enrollment authentication methods, you need to
enable and configure that authentication instance. You can also provide certificate based
authentication for either agent-approved or automated enrollments. For detailed information
on setting up authentication, see Chapter 10, "Authentication."
The authentication you set up in the Registration Manager has no bearing on the Certificate
Manager. Requests received by the Certificate Manager from the Registration Manager will
be considered to have been authenticated correctly by the Registration Manager; the
Certificate Manager will do no authentication checking.
Chapter 4
Registration Manager
149
Advertisement
Table of Contents
