Red Hat CERTIFICATE SYSTEM 7.3 - ADMINISTRATION Administration Manual page 207
Hide thumbs
Also See for CERTIFICATE SYSTEM 7.3 - ADMINISTRATION:
- Manual (98 pages) ,
- Release note (24 pages) ,
- Manual (88 pages)
Table of Contents
Advertisement
conn.ca2.keepAlive=true
conn.ca2.retryConnect=3
conn.ca2.servlet.enrollment=/ca/ee/ca/profileSubmitSSLClient
conn.ca2.servlet.revoke=/ca/subsystem/ca/doRevoke
conn.ca2.servlet.unrevoke=/ca/subsystem/ca/doUnrevoke
conn.ca2.timeout=100
3. Set up the operation parameters to use the different instances to perform the different TPS
functions.
The parameters for the different operations set the type of operation, the type of token profile, the
subsystem type, and other parameters specific to the operation and the subsystem type.
For example, the TKS subsystem connection to use for regular enrollment operations would be as
follows:
op.enroll.userKey.tks.conn=tks1
The CA configuration parameters to enroll and format that kind of token are as follows:
op.enroll.userKey.keyGen.encryption.ca.conn=ca1
op.enroll.userKey.keyGen.signing.ca.conn=ca2
op.enroll.userKeyTemporary.keyGen.auth.ca.conn=ca2
op.format.tokenKey.ca.conn=ca11
The CA parameters not only specify the type of token (userKey) but also the type of certificate
(encryption). It would be possible in this case to use different CAs for signing and encryption
certificate enrollments.
The DRM parameters also specify the types of keys being generated and archived:
op.enroll.userKey.keyGen.encryption.serverKeygen.drm.conn=drm1
op.enroll.tokenKey.keyGen.encryption.serverKeygen.drm.conn=drm2
The format operation parameters are listed in
reset operation parameters are listed in
enroll operation parameters are listed in
4. Set the mapping parameters for the different tokenType operations. The mapping parameters
help the TPS distinguish between the different types of tokens, assign the correct tokenType to
the token, and direct their requests to appropriate operation handling parameters. For example:
op.enroll.mapping.0.filter.appletMajorVersion=1
op.enroll.mapping.0.filter.appletMinorVersion=5
op.enroll.mapping.0.filter.tokenATR=
op.enroll.mapping.0.filter.tokenCUID.end=1000
op.enroll.mapping.0.filter.tokenCUID.start=4000
op.enroll.mapping.0.filter.tokenType=userKey
op.enroll.mapping.0.target.tokenType=userKey
Configuring Multiple Instances for Different Functions
Table 8.10, "Format Operation
Table 8.9, "PIN Reset Operation
Table 8.8, "Enrollment Operation
Preferences"; the
Preferences"; and the
Preferences".
185
Advertisement
Table of Contents
Related Manuals for Red Hat CERTIFICATE SYSTEM 7.3 - ADMINISTRATION
Related Products for Red Hat CERTIFICATE SYSTEM 7.3 - ADMINISTRATION
- Red Hat CERTIFICATE SYSTEM 7.0 - MIGRATION GUIDE
- Red Hat CERTIFICATE 7.1 ADMINISTRATOR
- Red Hat LINUX 7.2 - S-390
- Red Hat LINUX 7.1 - PSERIES
- Red Hat SYSTEM 8.0 - MIGRATION GUIDE 7.X TO 8.0
- Red Hat CERTIFICATE SYSTEM 7.2 - AGENT GUIDE
- Red Hat CERTIFICATE SYSTEM 8.0 - ADMINISTRATION
- Red Hat DIRECTORY SERVER 7.1 SP7 - S
Need help?
Do you have a question about the CERTIFICATE SYSTEM 7.3 - ADMINISTRATION and is the answer not in the manual?
Questions and answers