ACL Reference
Operations
read
recover
download
Default ACIs
allow (read,recover,download) group="Data Recovery Manager Agents"
Only Data Recovery Manager agents can read, recover, or retrieve key information.
certServer.kra.keys
Allow or deny a list operation for the Data Recovery Manager.
Operations
list
Default ACIs
allow (list) group="Data Recovery Manager Agents"
Only Data Recovery Manager agents can list keys.
certServer.kra.request
Allow or deny a read operation for a Data Recovery Manager request.
Operations
read
Default ACIs
allow (read) group="Data Recovery Manager Agents"
Data Recovery Manager Agents can read requests.
certServer.kra.requests
Allow or deny a list operation for a Data Recovery Manager request.
354
Red Hat Certificate System Administrator's Guide • September 2005
Displaying a key recovery request.
Indicating that a Data Recovery Manager has approved the key recovery.
Finalizing a key recovery operation.
Downloading a PKCS#12 file containing a private key.
Searching for keys to be recovered using various search filters. Retrieving
a list of key archival records matching search criteria.
Assigning a request to a Data Recovery Manager Agent.