Notifications Of Certificate Issuance To End Entities - Netscape MANAGEMENT SYSTEM 6.01 Installation And Setup Manual
Hide thumbs
Also See for NETSCAPE MANAGEMENT SYSTEM 6.01:
- Configuration manual (282 pages) ,
- Reference (162 pages) ,
- Installation manual (106 pages)
Table of Contents
Advertisement
Automated Notifications
•
Notification of New Request in Queue—agents are notified by email that a
request has been added to the request queue. Alternatively (or in addition) a
schedulable job can notify agents at regular intervals of the current state of the
request queue; see "Configuring a Subsystem to Run Automated Jobs" on
page 545.
Notifications of Certificate Issuance to End
Entities
You can configure the Certificate Manager or Registration Manager to send a
notification message to users who have been issued certificates in response to
enrollment requests. This message normally includes information about the issued
certificate and instructions for importing the certificate into the user's client.
This kind of notification involves a listener class in the subsystem that registers an
interest in an appropriate event, in this case successful completion of an enrollment
request. In the CMS configuration, this listener class for a Certificate Manager is
defined as
defined as
check the samples provided in CMS SDK:
<server_root>/cms_sdk/cms_jdk/samples/listeners
When a certificate is issued, the listener builds a notification message based on a
configured template and sends it to an email address that it determines by using an
email resolver. By default the email is obtained from the email address entered in
the request or from the certificate.
•
The email resolver first checks the request for the email address and if doesn't
find one, it checks the subject name of the certificate for the email address; if
the subject name doesn't include the email address, the resolver checks the
certificate for the Subject Alternative Name extension to see whether it
specifies the email address. For specifying an email address in the Subject
Alternative Name extension, see "Configuring Policy Rules for a Subsystem"
on page 569.
•
In the absence of an email address, the notification is sent to the email address
specified in the "Sender's Email Address" field, instead of the requestor, as an
undeliverable notification. There'll also be a message to this effect in the logs;
see "Monitoring CMS Logs" on page 759.
532
Netscape Certificate Management System Installation and Setup Guide • May 2002
ca.notification.certIssued
ra.notification.certIssued
and for the Registration Manager it is
. For more information on listeners,
Advertisement
Table of Contents
