Certserver.kra.tokenkeyrecovery; Online Certificate Status Manager-Specific Acls; Certserver.ca.ocsp - Red Hat CERTIFICATE SYSTEM 8.0 - ADMINISTRATION Admin Manual

allow (read) group="Data Recovery Manager Agents"
Operations Description
read View statistics.
Table D.64. certServer.kra.systemstatus ACL Summary
D.4.15. certServer.kra.TokenKeyRecovery
Controls who can submit key recovery requests for a token to the DRM. This is a common request for
replacing a lost token. The default configuration is:
allow (read,submit) group="Data Recovery Manager Agents"
Operations Description
read View key recovery request information for a token recovery.
submit Submit or initiate key recovery requests for a token recovery.
Table D.65. certServer.kra.TokenKeyRecovery ACL Summary
D.5. Online Certificate Status Manager-Specific ACLs
This section covers the default access control configuration attributes which are set specifically for the
Online Certificate Status Manager. The OCSP responder's ACL configuration also includes all of the
Section D.2, "Common
common ACLs listed in
There are access control rules set for each of the OCSP's interfaces (administrative console and
agents and end-entities services pages) and for common operations like listing and downloading
CRLs.
D.5.1. certServer.ca.ocsp
Controls who can read information about which OCSP is configured for a Certificate Manager to use.
The default configuration is:
allow (read) group="Certificate Manager Agents"
Operations Description
read View OCSP responder configuration.

certServer.kra.TokenKeyRecovery

ACLs".
515