Potential Token Operation Errors - Red Hat CERTIFICATE SYSTEM 8.0 - ADMINISTRATION Admin Manual
Hide thumbs
Also See for CERTIFICATE SYSTEM 8.0 - ADMINISTRATION:
- Using manual (48 pages) ,
- Agents manual (146 pages) ,
- Manual (124 pages)
Table of Contents
Advertisement
The CA parameters not only specify the type of token (userKey) but also the type of certificate
(encryption). It would be possible in this case to use different CAs for signing and encryption
certificate enrollments.
The DRM parameters also specify the types of keys being generated and archived:
op.enroll.userKey.keyGen.encryption.serverKeygen.drm.conn=drm1
op.enroll.tokenKey.keyGen.encryption.serverKeygen.drm.conn=drm2
The format operation parameters are listed in
reset operation parameters are listed in
enroll operation parameters are listed in
4. Set the mapping parameters for the different tokenType operations. The mapping parameters
help the TPS distinguish between the different types of tokens, assign the correct tokenType to
the token, and direct their requests to appropriate operation handling parameters. For example:
op.enroll.mapping.0.filter.appletMajorVersion=1
op.enroll.mapping.0.filter.appletMinorVersion=5
op.enroll.mapping.0.filter.tokenATR=
op.enroll.mapping.0.filter.tokenCUID.end=1000
op.enroll.mapping.0.filter.tokenCUID.start=4000
op.enroll.mapping.0.filter.tokenType=userKey
op.enroll.mapping.0.target.tokenType=userKey
The mapping and filter parameters are listed in
5.9. Potential Token Operation Errors
Errors that are returned by smart cards are listed in
These errors are specifically related to the function or behavior of the smart cards themselves, not
necessarily the TPS or token management system in Certificate System.
When managing the TPS itself, it is important to know that token operations can cause a large
number of unindexed searches to be returned in the instance's internal Directory Server logs. (An
unindexed search shows up in Red Hat Directory Server access logs as notes=U.) Unindexed
searches are resource-intensive and can affect performance for the Directory Server. However,
many of the unindexed searches returned for Certificate System token operations are improperly
labeled index searches when they are really indexed VLV searches. The remainder of the unindexed
searches still had very low etimes for the searches and should not significantly affect Certificate
System performance.
Table 5.1, "Format Operation
Table 5.5, "PIN Reset Operation
Table 5.2, "Enrollment Operation
Table 5.7, "Mapping and
Section 15.7, "Smart Card Error
Potential Token Operation Errors
Parameters"; the
Parameters"; and the
Parameters".
Filters".
Codes".
167
Advertisement
Table of Contents
Subscribe to Our Youtube Channel
Related Manuals for Red Hat CERTIFICATE SYSTEM 8.0 - ADMINISTRATION
Related Products for Red Hat CERTIFICATE SYSTEM 8.0 - ADMINISTRATION
- Red Hat CERTIFICATE 7.2 RELEASE NOTES
- Red Hat CERTIFICATE SYSTEM 7.2 - MIGRATION GUIDE
- Red Hat CERTIFICATE SYSTEM 7.1 - ADMINSISTRATOR
- Red Hat CERTIFICATE 7.3 RELEASE NOTES
- Red Hat CERTIFICATE SYSTEM 8 - DEPLOYMENT
- Red Hat CERTIFICATE SYSTEM 8 - AGENTS GUIDE
- Red Hat CERTIFICATE 8.0 RELEASE NOTES
- Red Hat CERTIFICATE SYSTEM ENTERPRISE - SECURITY GUIDE
- Red Hat CLUSTER SUITE - CONFIGURING AND MANAGING A CLUSTER 2006
- Red Hat CLUSTER MANAGER - INSTALLATION AND
- Red Hat Cluster Suite
- Red Hat Application Server
- Red Hat APPLICATION SERVER - JONAS
- Red Hat APPLICATION STACK 1.1 RELEASE
- Red Hat APPLICATION STACK 1.2 RELEASE
- Red Hat APPLICATION STACK 1.3 RELEASE
Need help?
Do you have a question about the CERTIFICATE SYSTEM 8.0 - ADMINISTRATION and is the answer not in the manual?
Questions and answers