Configuring Policies; Configuring Certificate Profiles - Red Hat CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR Administrator's Manual
Hide thumbs
Also See for CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR:
Table of Contents
Advertisement
Configuring a Registration Manager
Configuring Policies
The Policy feature is a set of plug-ins that you create instances of and then configure. These
instances define certificate content and the values for that content and constraints for the
content that can either be associated with all certificates, or with a subset of certificates
defined using predicates. When a non-certificate profile enrollment request is processed, it
is evaluated against all policies that are applicable to this type of request. Any policy that
has no predicate is evaluated against all certificate requests. Those with predicates are
evaluated against certificates requests that match the predicate value of the policy. The
predicate value can be a certificate type, like a CA certificate or an SSL signing certificate,
in which case, all requests for that type of certificate are evaluated by the policy. The
predicate value can be some other evaluator that can be matched in the request. You can use
hidden values in the request form to match predicate values.
When using the policy feature for enrollment, you must take care to associate a form with
all of the policies you want to be evaluated for this certificate request.
Some of the policies can be configured to collect other information about an end entity from
an LDAP directory and place that information in the certificate. A default set of policies is
created. Some of these are enabled and some are disabled. You need to configure the policy
feature by configuring the existing policies, deleting unwanted policies, and creating
needed policies that are not created by default.
For detailed information, see Chapter 12, "Policies."
If you set up and enable policies in the Registration Manager, you must be careful how you
set up policies in the Certificate Manager that issues certificates for this Registration
Manager. Requests sent by the Registration Manager will be evaluated by the policies set up
in the Certificate Manager.
Configuring Certificate Profiles
The certificate profile feature uses instances of certificate profile plug-ins that can be
configured to issue a type of certificate. The certificate profile contains defaults that specify
the contents and the value of that content for this type of certificate, constraints that
constrain the content of this type of certificate, associate the certificate profile with a set up
authentication method, and define the contents of the enrollment page and the output page
when an automated authentication method is used.
Chapter 4
Registration Manager
151
Advertisement
Table of Contents
Subscribe to Our Youtube Channel
Related Manuals for Red Hat CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR
Related Products for Red Hat CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR
- Red Hat CERTIFICATE SYSTEM 7.0 - MIGRATION GUIDE
- Red Hat CERTIFICATE SYSTEM 7.3 - ADMINISTRATION
- Red Hat LINUX 7.2 - S-390
- Red Hat LINUX 7.1 - PSERIES
- Red Hat SYSTEM 8.0 - MIGRATION GUIDE 7.X TO 8.0
- Red Hat CERTIFICATE SYSTEM 7.2 - AGENT GUIDE
- Red Hat DIRECTORY SERVER 7.1 SP7 - S
- Red Hat Application Server
- Red Hat APPLICATION SERVER - JONAS
- Red Hat APPLICATION STACK 1.1 RELEASE
- Red Hat APPLICATION STACK 1.2 RELEASE
- Red Hat APPLICATION STACK 1.3 RELEASE
- Red Hat APPLICATION STACK 1.4 RELEASE
- Red Hat APPLICATION STACK 2.0 RELEASE
- Red Hat APPLICATION STACK 2.1 RELEASE
- Red Hat APPLICATION STACK 2.2 RELEASE
Need help?
Do you have a question about the CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR and is the answer not in the manual?