certificate. CMC enrollment is also supported allowing a request signed by an
agent to be automatically processed. A set of prebuilt authentication plug-ins are
available to enable and configure. You can create additional Authentication plug-in
modules using the CMS SDK. See Chapter 9, "Authentication" for complete details.
Certificate Issuance
CMS supports the enrollment and certificate issuance to a wide variety of
end-entities. It can process certificate requests from various end entities, such as
web browsers, servers, routers, and virtual private network (VPN) clients, and
issue certificates that conform to X.509 version 3 standard.
The Certificate Manager can issue certificates with the following characteristics:
•
Certificates that are X.509 version 3 compliant
•
Unicode support for certificate subject name and issuer name
•
Support for empty certificate subject name
•
Support for customized components in subject names
•
Support for CEP enrollment
•
Support for customized extensions
Certificate Profiles
CMS has a new feature called certificate profiles. Certificate Profiles allow you to
create a single certificate profile associated with the issuance of a particular type of
certificate by configuring the content of the certificate, the constraints put on the
issuance of this certificate, the enrollment method used, and the input and output
forms associated with this enrollment.
A set of certificate profiles are included for the most common certificate types. You
can use these certificate profiles and configure their settings to suit your needs.
Certificate Profiles are configured by an administrator, and then sent to the Agent
Services Interface for agent approval. Once a certificate profile is approved, it is
enabled for use. A dynamically generated HTML form for the certificate profile is
used in the end-entity interface for enrollment which triggers this certificate
profile. The server will verify that the defaults and constraints set in the certificate
Features
Chapter 1
Overview
33
Need help?
Do you have a question about the NETSCAPE MANAGEMENT SYSTEM 6.1 - ADMINISTRATOR and is the answer not in the manual?