Table of Contents
Advertisement
1.1.2. Certificate System Users
Three kinds of users can access Certificate System subsystems: administrators, agents, and
end entities. Administrators are responsible for the initial setup and ongoing maintenance of the
subsystems. Administrators can also assign agent status to users. Agents manage day-to-day
interactions with end entities, which can be users or servers and clients, and other aspects of the
PKI. End entities must access a Certificate Manager (CA) subsystem to enroll for certificates in a PKI
deployment and for certificate maintenance, such as renewal or revocation.
Figure 1.1, "The Certificate System and Users"
end entities. All agent and administrator interactions with Certificate System subsystems occur over
HTTPS. End-entity interactions can take place over HTTP or HTTPS.
Figure 1.1. The Certificate System and Users
1.2. Agent Tasks
The designated agents for each subsystem are responsible for the everyday management of end
entity requests and other aspects of the PKI:
• Certificate Manager Agents manage certificate requests received by the Certificate Manager
subsystem, maintain and revoke certificates as necessary, and maintain global information about
certificates.
shows the ports used by administrators, agents, and
Certificate System Users
3
Advertisement
Table of Contents
Need help?
Do you have a question about the CERTIFICATE SYSTEM 8 - AGENTS GUIDE and is the answer not in the manual?