Chapter 9. TPS: Managing Token and Smart Card Operations
NOTE
There is no HTML end entities page for TPS services since end entity tasks are performed
through the Enterprise Security Client.
The TPS services pages manage four areas for tokens:
• Tokens
• Certificates issued to tokens
• Activities performed on the TPS, such as creating tokens or users or editing entries, analogous to
viewing logs for other subsystems
• TPS subsystem users
Operators can view any token-related entries (meaning tokens, certificates, and activities), but they
cannot edit them.
The TPS agents can both view and edit tokens (both for policies and status) and view certificates and
activities.
TPS administrators can view tokens and certificates, can add and delete tokens, and can add, edit,
and delete TPS users. Administrators can also view slightly more activities than agents or operators
because they can view both token and user events.
Each tab is accessed by the roles defined on the user entry and by authenticating to the TPS site with
the appropriate certificate.
The information available to each role can be limited to specific enrollment profiles. Enrollment profiles
for tokens are similar to the enrollment profiles for CAs; they define a certain use or kind of token
enrollment. The default profiles relate to user and security officer enrollments. Custom enrollments can
be added.
9.2. Performing Operator Tasks
The Operator Operations tab has three main areas to search tokens, certificates, and activities.
106