Red Hat CERTIFICATE SYSTEM 8.0 - ADMINISTRATION Admin Manual page 74
Hide thumbs
Also See for CERTIFICATE SYSTEM 8.0 - ADMINISTRATION:
- Using manual (48 pages) ,
- Agents manual (146 pages) ,
- Manual (124 pages)
Table of Contents
Advertisement
Chapter 2. Making Rules for Issuing Certificates
request.server.create_request.0.assignTo=agents
request.server.create_request.0.plugin=PKI::Request::Plugin::AutoAssign
request.server.create_request.1.mailTo=dlackey@redhat.com
request.server.create_request.1.plugin=PKI::Request::Plugin::EmailNotification
request.server.create_request.1.templateDir=/usr/share/pki/ra/conf
request.server.create_request.1.templateFile=mail_create_request.vm
request.server.create_request.num_plugins=2
... when the request is rejected ...
request.server.reject_request.num_plugins=0
Example 2.2. Server Certificate Enrollment
To create the entry:
1. Stop the RA.
service pki-ra stop
2. Open the CS.cfg file.
vim /var/lib/pki-ra/conf/CS.cfg
3. Add the profile configuration entries for the new profile.
request.example.approve_request.0.ca=ca1
request.example.approve_request.0.plugin=PKI::Request::Plugin::RequestToCA
request.example.approve_request.0.profileId=exampleProfile
request.example.approve_request.0.reqType=crmf
request.example.approve_request.1.mailTo=$created_by
request.example.approve_request.1.plugin=PKI::Request::Plugin::EmailNotification
request.example.approve_request.1.templateDir=/usr/share/pki/ra/conf
request.example.approve_request.1.templateFile=mail_approve_request.vm
request.example.approve_request.num_plugins=2
request.example.create_request.0.assignTo=agents
request.example.create_request.0.plugin=PKI::Request::Plugin::AutoAssign
request.example.create_request.1.mailTo=admin@example.com
request.example.create_request.1.plugin=PKI::Request::Plugin::EmailNotification
request.example.create_request.1.templateDir=/usr/share/pki/ra/conf
request.example.create_request.1.templateFile=mail_create_request.vm
request.example.create_request.num_plugins=2
request.example.reject_request.num_plugins=0
For enrollments that require a one-time PIN (such as SCEP and agent certificates, by default), it is
possible to specify whether to generate the PIN from the requester's name ($created_by), the
site ID ($site_id), or the user ID ($uid). For example:
request.example.approve_request.0.pinFormat=$uid
Likewise, the email address to which to send the notification can be configured to a single
administrator address or to the requester's address ($created_by). For example:
request.example.approve_request.1.mailTo=$created_by
4. Restart the RA.
52
Advertisement
Table of Contents
Related Manuals for Red Hat CERTIFICATE SYSTEM 8.0 - ADMINISTRATION
Related Products for Red Hat CERTIFICATE SYSTEM 8.0 - ADMINISTRATION
- Red Hat CERTIFICATE 7.2 RELEASE NOTES
- Red Hat CERTIFICATE SYSTEM 7.2 - MIGRATION GUIDE
- Red Hat CERTIFICATE SYSTEM 7.1 - ADMINSISTRATOR
- Red Hat CERTIFICATE 7.3 RELEASE NOTES
- Red Hat CERTIFICATE SYSTEM 8 - DEPLOYMENT
- Red Hat CERTIFICATE SYSTEM 8 - AGENTS GUIDE
- Red Hat CERTIFICATE 8.0 RELEASE NOTES
- Red Hat CERTIFICATE SYSTEM ENTERPRISE - SECURITY GUIDE
- Red Hat CLUSTER SUITE - CONFIGURING AND MANAGING A CLUSTER 2006
- Red Hat CLUSTER MANAGER - INSTALLATION AND
- Red Hat Cluster Suite
- Red Hat Application Server
- Red Hat APPLICATION SERVER - JONAS
- Red Hat APPLICATION STACK 1.1 RELEASE
- Red Hat APPLICATION STACK 1.2 RELEASE
- Red Hat APPLICATION STACK 1.3 RELEASE
Need help?
Do you have a question about the CERTIFICATE SYSTEM 8.0 - ADMINISTRATION and is the answer not in the manual?