CMS Privileged Users and Groups (Roles)
Note: CMS does not store user secret keys, and it does not support the export of
component (subsystem) private or secret keys.
Supported Operating Systems
CMS runs on the Solaris 2.8 and RedHat Advanced Server 2.1 operating systems.
Supported Browsers
The browsers that are supported in the Common Criteria Environment are
Netscape 4.79, Netscape 6.2, and Netscape 7.x.
CMS Privileged Users and Groups (Roles)
Each CMS subsystem has four roles set up by default. The roles that are created are
specific to the CMS subsystem, and depend on which CMS subsystem has been
installed. All of the privileged roles (see "About Roles" on page 683 for more
information about privileges) require SSL client-authentication by presenting a
certificate that maps to the user with the corresponding role (i.e., authorization).
The following sections show the default roles that are created with each subsystem
and the main privileges of each.
CA
•
Administrators
•
Certificate Manager Agents
680
Netscape Certificate Management System Administrator's Guide • February 2003
Can start/stop the server (from the command-line).
Can perform all configuration management for CA (unless assigned
otherwise), including the configuration of certificate profiles (specifying
the set of acceptable values for fields and extensions) for certificate
enrollment requests (via the CMS Console).
Can backup (CMSBackup) and restore (CMSRestore) the subsystem from
the command-line.