Table of Contents
Advertisement
Enrollment Overview
•
Agent-approved enrollment is the method in which end-entity enrollment
requests are sent to an agent for approval. The agent approves the certificate
request.
•
Automatic enrollment is the method in which end-entity enrollment requests
are authenticated using a plug-in for that type of authentication, and then the
certificate request is processed; an agent is not involved in the enrollment
process.
•
Agent initiated enrollment is the method in which end-entities enroll in person
with the agent filling in information and authenticating the user. This method
is only available in the Registration Manager subsystem.
•
CMC Enrollment where a third party application can create a request that is
signed by an agent and then automatically processed.
A Certificate Manager is initially configured for agent-approved enrollment and
for
CMCAuth
enrollment,
You can set up automated enrollment by enabling and configuring an instance of
one of the authentication plug-in modules. You can also create plug-ins for
automatic enrollment using other forms of authentication, such as a secure ID card
or a relational database using the CMS SDK.
You configure authentication in the subsystem that actually processes end-entity
requests. If you have set up a Registration Manager to process requests, you
configure authentication in that Registration Manager. The Registration Manager
does all of the authentication processing. The Registration Manager then sends a
signed request to the Certificate Manager via a trusted connection. The Certificate
Manager simply processes the request, it does not authenticate the user, or check
that the user was authenticated.
You can configure more than one authentication method in a single instance of a
subsystem. The HTML registration pages contain hidden values specifying the
method used. If you were to set up multiple methods, you would create separate
end-entity registration pages, each specifying a different method. If you use the
certificate profile feature, the end-entity enrollment pages are dynamically
generated for each certificate profile you configure and enable. The authentication
method associated with this certificate profile is specified in the dynamically
generated enrollment page.
384
Netscape Certificate Management System Administrator's Guide • February 2003
; a Registration Manager is initially configured for agent-approved
, and for in person enrollment.
CMCAuth
Advertisement
Table of Contents
Related Manuals for Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - ADMINISTRATOR
Related Products for Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - ADMINISTRATOR
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - CUSTOMIZATION
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - CUSTOMIZATION
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - ADMINISTRATOR
- Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - CUSTOMIZATION GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - PLUG-IN