Red Hat CERTIFICATE SYSTEM 8.0 - ADMINISTRATION Admin Manual page 234
Hide thumbs
Also See for CERTIFICATE SYSTEM 8.0 - ADMINISTRATION:
- Using manual (48 pages) ,
- Agents manual (146 pages) ,
- Manual (124 pages)
Table of Contents
Advertisement
Chapter 8. Publishing Certificates and CRLs
more than one mapper set for a type of certificate. This can be useful, for example, to publish
certificates for two sets of users from different divisions of a company who are located in different
parts of the directory tree. A mapper is created for each of the groups to specify a different branch
of the tree.
For details about setting up mappers, see
4. Create rules to connect publishers to mappers, as described in
8.2.3.1. Configuring the LDAP Directory
Before certificates and CRLs can be published, the Directory Server must be configured to work with
the publishing system.
1. Set up the entry for the CA. For the Certificate Manager to publish its CA certificate and CRL, the
directory must include an entry for the CA.
The Certificate Manager automatically creates an entry for the CA in the directory. This option is
set in both the CA and CRL mapper instances and enabled by default. If the directory restricts
the Certificate Manager from creating entries in the directory, turn off this option in those mapper
instances, and add an entry for the CA manually in the directory.
When adding the CA's entry to the directory, select the entry type based on the DN of the CA:
• If the CA's DN begins with the cn component, create a new person entry for the CA. Selecting
a different type of entry may not allow the cn component to be specified.
• If the CA's DN begins with the ou component, create a new organizationalunit entry for
the CA.
The entry does not have to be in the certificationAuthority object class. The Certificate
Manager will convert this entry to the certificationAuthority object class automatically by
publishing its CA's signing certificate.
For more information on creating directory entries, see the Red Hat Directory Server
documentation.
2. Add the correct schema elements to the CA and user directory entries.
For a Certificate Manager to publish certificates and CRLs to a directory, it must figured with
specific attributes and object classes.
Certificate Type
End-entity
212
Section 8.2.3.3, "Creating
Section 8.2.4, "Creating
Mappers".
Rules".
Advertisement
Table of Contents
Related Manuals for Red Hat CERTIFICATE SYSTEM 8.0 - ADMINISTRATION
Related Products for Red Hat CERTIFICATE SYSTEM 8.0 - ADMINISTRATION
- Red Hat CERTIFICATE 7.2 RELEASE NOTES
- Red Hat CERTIFICATE SYSTEM 7.2 - MIGRATION GUIDE
- Red Hat CERTIFICATE SYSTEM 7.1 - ADMINSISTRATOR
- Red Hat CERTIFICATE 7.3 RELEASE NOTES
- Red Hat CERTIFICATE SYSTEM 8 - DEPLOYMENT
- Red Hat CERTIFICATE SYSTEM 8 - AGENTS GUIDE
- Red Hat CERTIFICATE 8.0 RELEASE NOTES
- Red Hat CERTIFICATE SYSTEM ENTERPRISE - SECURITY GUIDE
- Red Hat CLUSTER SUITE - CONFIGURING AND MANAGING A CLUSTER 2006
- Red Hat CLUSTER MANAGER - INSTALLATION AND
- Red Hat Cluster Suite
- Red Hat Application Server
- Red Hat APPLICATION SERVER - JONAS
- Red Hat APPLICATION STACK 1.1 RELEASE
- Red Hat APPLICATION STACK 1.2 RELEASE
- Red Hat APPLICATION STACK 1.3 RELEASE
Need help?
Do you have a question about the CERTIFICATE SYSTEM 8.0 - ADMINISTRATION and is the answer not in the manual?