This chapter explains how to set up authorization for access to the administrative,
agent services, and end-entity interfaces and contains the following sections:
•
About Authorization
•
Setting up Administrators, Agents, and Auditors
•
Setting Up a Trusted Manager
•
Agent Certificates
•
Modifying CMS User Entries
•
Creating a New Group
•
Authorization for CMS Users
•
ACL Reference
About Authorization
Authorization is the process of allowing access to certain tasks associated with
Netscape Certificate Management System (CMS). The authorization model is very
flexible allowing you to configure it to your needs.
In order to authorize users, you create users in CMS. These users are specific to the
subsystem in which you create them, each subsystem has its own set of users
independent of any other subsystem you may have installed. The user's are placed
in groups that are either predefined, or that you have created. Privileges are
assigned to a group through ACLs. There are ACLs associated with the areas in the
administrative, agent services interface, and end-entity interface that perform an
Chapter 8
Authorization
323