Table of Contents
Advertisement
To enable you to configure Certificate Management System for certificate-based
enrollment, the following three enrollment forms are provided:
•
CertBasedDualEnroll.htm
certificates—one for signing another for encryption—by submitting pre-issued
certificates as authentication tokens; when a user enrolls for a certificate, the
server verifies the CA that has issued the certificate the user uses for
authentication, uses the configured directory to formulate subject names for
the new certificates, and issues the certificates.
•
CertBasedEncryptionEnroll.html—this form is provided as a sample. It enables
end users to request encryption certificates by submitting pre-issued certificates as
authentication tokens; when a user enrolls for a certificate, the server verifies the CA
that has issued the certificate the user uses for authentication, uses the configured
directory to formulate the subject name for the new certificate, and issues the certificate.
•
CertBasedSingleEnroll.html
end users to request signing certificates by submitting pre-issued certificates as
authentication tokens; when a user enrolls for a certificate, the server verifies
the CA that has issued the certificate the user uses for authentication, uses the
configured directory to formulate the subject name for the new certificate, and
issues the certificate.
Note that all three enrollment forms by default work with the directory-based
authentication module, named
Plug-in Module" on page 24. You can use the certificate-based enrollment forms
with any of the authentication modules, for example, directory- and PIN-based or
NIS-server based authentication modules. However, this would require you to add
the necessary hidden fields or variables to enrollment form that's provided for the
corresponding authentication module; check Table 1-6 on page 57 to figure out
which enrollment form works with which module.
In general, the following three hidden variables distinguish certificate-based
enrollment forms from other enrollment forms:
•
certauthEnroll
is turned
or
on
off
•
certauthEnrollType
certificate-based-enrollment types:
specifies that the enrollment request is for dual certificates;
that the enrollment request is for a signing certificate; and
specifies that the enrollment request is for an encryption certificate.
Note that choosing
dual key pairs.
l—this form enables end users to request dual
—this form is provided as a sample. It enables
UidPwdDirAuth
—this variable specifies whether certificate-based enrollment
.
—this variable specifies one of the three
dual
would require a client that's capable of generating
dual
Certificate-Based Enrollment
, explained in "UidPwdDirAuth
,
, or
single
encryption
single
encryption
Chapter 1
Authentication Plug-in Modules
;
dual
specifies
53
Advertisement
Table of Contents
Related Manuals for Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - PLUG-IN
Related Products for Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - CUSTOMIZATION GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - CUSTOMIZATION
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - CUSTOMIZATION
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - COMMAND-LINE