Red Hat CERTIFICATE SYSTEM 8 - DEPLOYMENT Deployment Manual page 21

This list is not exhaustive; there are certificate enrollment forms for dual-use certificates for LDAP
directories, file-signing certificates, and other subsystem certificates. These forms are available
through the Certificate Manager's end-entities page, at https://server.example.com:9444/
ca/ee/ca. For more detailed information about the different certificates that can be created, see the
Certificate System Agent's Guide.
When the different Certificate System subsystems are installed, the basic required certificates and
keys are generated; for example, configuring the Certificate Manager generates the CA signing
certificate for the self-signed root CA and the internal OCSP signing, audit signing, SSL server, and
agent user certificates. During the DRM configuration, the Certificate Manager generates the storage,
transport, audit signing, and agent certificates. Additional certificates can be created and installed
separately.
Certificate Type
Client SSL certificates
Server SSL certificates
S/MIME certificates
How Certificates Are Used
11