Anyone can request a renewal or revocation, anyone can import and read a
certificate
certServer.ee.certificates
Allow or deny a revoke or list operation in the end-entity interface.
Operations
revoke
Submitting a revocation of a list of certificates.
list
Search for certificates matching specified criteria.
Default ACIs
allow (revoke,list) user="anybody"
Anyone can revoke and list certificates.
certServer.ee.certchain
Allow or deny a download or read operation for the CA's certificate chain in the
end-entity interface.
Operations
download
Downloading the CA's certificate chain.
read
Viewing the CA's certificate chain.
Default ACIs
allow (download,read) user="anybody"
Anyone can read or download a CA's certificate chain.
certServer.ee.crl
Allow or deny a read or add operation for CRLs in the end-entity interface.
ACL Reference
Chapter 8
Authorization
361