About This Guide; Required Concepts; What Is In This Guide - Red Hat CERTIFICATE SYSTEM 8 - AGENTS GUIDE Agents Manual

About This Guide

The web-based interfaces for Certificate System allow end users, agents, and administrators to
perform common tasks, such as requesting, approving, and revoking certificates. Additionally,
administrators for RA and TPS subsystems can perform administrative tasks such as creating users
and groups. This guide is for agents of Certificate System subsystems. It explains the different agent
services interfaces for the Certificate System subsystems and details the agent operations which can
be performed. This information is used to manage and maintain certificates and keys for users in the
PKI deployment.
This guide is intended for Certificate System agents. Agents are privileged users designated by the
Certificate System administrator to manage requests from end entities for certificate-related services.
Each installed Certificate System subsystem; Certificate Manager, Data Recovery Manager (DRM),
Online Certificate Status Manager, Token Key Service (TKS), and Token Processing System (TPS),
can have multiple agents.

1. Required Concepts

Before reading this guide, be familiar with the basic concepts of public-key cryptography and the
Secure Sockets Layer (SSL) protocol, including the following topics:
• Encryption and decryption
• Public keys, private keys, and symmetric keys
• Digital signatures
• The role of digital certificates in a public-key infrastructure (PKI)
• Certificate hierarchies
• SSL cipher suites
• The purpose of and major steps in the SSL handshake

2. What Is in This Guide

This guide describes an agent's responsibilities for the different Certificate System subsystems, and
explains basic usage and tasks.
Chapter 1, Agent Services
•
users, including agents. The chapter also summarizes the tasks of each subsystem agent, lists the
HTML forms used to perform agent tasks, and explains how to access the agent services pages and
forms.
Chapter 2, CA: Working with Certificate Profiles
•
details how to enable and disable profiles.
Chapter 3, CA: Handling Certificate Requests
•
requests and explains how to handle different aspects of certificate request management. A
Certificate Manager agent is responsible for handling requests by end entities (end users, server
administrators, or other Certificate System subsystems) for certificates using manual enrollment.
Provides an overview of the product and identifies different kinds of
Provides an overview of the profiles feature and
Describes the general procedures for handling
v