Supported Operating Systems; Supported Browsers; Cs Privileged Users And Groups (Roles) - Red Hat CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR Administrator's Manual

CS Privileged Users and Groups (Roles)

Supported Operating Systems

CS runs on the Solaris 2.8 and RedHat Advanced Server 2.1 operating systems.

Supported Browsers

The browsers that are supported in the Common Criteria Environment are Netscape 4.79,
Netscape 6.2, and Netscape 7.x.
CS Privileged Users and Groups (Roles)
Each CS subsystem has four roles set up by default. The roles that are created are specific to
the CS subsystem, and depend on which CS subsystem has been installed. All of the
privileged roles (see "About Roles" on page 695 for more information about privileges)
require SSL client-authentication by presenting a certificate that maps to the user with the
corresponding role (i.e., authorization). The following sections show the default roles that
are created with each subsystem and the main privileges of each.
CA
• Administrators
❍
❍
❍
• Certificate Manager Agents
❍
❍
• Auditors
692 Red Hat Certificate System Administrator's Guide • September 2005
Can start/stop the server (from the command-line).
Can perform all configuration management for CA (unless assigned otherwise),
including the configuration of certificate profiles (specifying the set of acceptable
values for fields and extensions) for certificate enrollment requests (via the CS
Console).
Can backup (CSBackup) and restore (CSRestore) the subsystem from the
command-line.
Can approve fields/extensions (to be included in a certificate) of certificate profiles
that have been enabled and configured by the Administrator (via SSL-capable
browsers to the CA Agent interface).
Can run tools (CMCEnroll and CMCRevoke) to pre-approve certificate enrollment
and revocation requests.