Step 5. Configure Certificate Manager For Required Extension Policies - Netscape MANAGEMENT SYSTEM 6.0 Installation And Setup Manual
Hide thumbs
Also See for NETSCAPE MANAGEMENT SYSTEM 6.0:
- Manual (302 pages) ,
- Installation and migration manual (66 pages) ,
- Administrator's manual (470 pages)
Table of Contents
Advertisement
Setting Up a Remote OCSP Responder
Step 5. Configure Certificate Manager for
Required Extension Policies
In order for OCSP-compliant clients to query the Online Certificate Status Manager
about the revocation status of a certificate, the certificate being validated must
contain the Authority Information Access extension pointing to the location at
which the Online Certificate Status Manager listens for OCSP service requests. For
details about the Authority Information Access extension, see section
"AuthInfoAccessExt Plug-in Module" of CMS Plug-Ins Guide.
The Certificate Manager can add an extension to a certificate it issues only if the
corresponding policy is enabled and configured properly. Hence, before issuing
the OCSP-compliant client certificate, you must verify that the Certificate Manager
is configured with the appropriate policy rules to add the required extensions to
these certificates.
Also, for testing whether your OCSP-compliant clients can verify revocation status
of certificates by querying the OCSP responder, you will be issuing a client
certificate containing the Authority Information Access extension to Personal Security
Manager you installed.
To verify the status of policy rules that enable the Certificate Manager to add the
extensions required in an OCSP-compliant client certificate:
In the navigation tree, select Certificate Manager, and then select Policies.
1.
The Policy Rules Management tab appears. It lists configured policy rules.
700
Netscape Certificate Management System Installation and Setup Guide • March 2002
Advertisement
Table of Contents
Need help?
Do you have a question about the NETSCAPE MANAGEMENT SYSTEM 6.0 and is the answer not in the manual?