Table of Contents
Advertisement
About Authorization
Authentication of Auditors
Auditors are authenticated into the CMS console by using their login and
password. Once authenticated, they can only view the audit logs, they are not able
to edit other parts of the system.
You can change the method of authentication for an auditor to SSL client
authentication. See "Setting up Certificate Authentication for the CMS Console,"
on page 247 for complete details.
Agents
Agents are users who have been assigned end-entity certificate- and
key-management privileges. Agents can access the agent services interface, and
perform tasks associated with their subsystem in that interface. For a complete list
of agent tasks, see the CMS Agent's Guide.
You create agents by creating a user, assigning membership in the appropriate
agent group, and identifying certificates that the agents must use for SSL client
authentication to the subsystem (for it to service requests from the agents).
Each CMS subsystem has its own agents whose role is defined by the subsystem.
Each subsystem installed in a CMS instance must have at least one agent, and there
is no limit to the number of agents a subsystem can have.
Authentication of Agents
CMS identifies and authenticates a user with agent privileges by checking the user's
SSL client certificate in its internal database. See "Agent Certificates," on page 335.
For information on obtaining and revoking agent certificates, see "Revocation
Status Checking of Agent Certificates," on page 339.
Groups for Agents
Each substystem has its own agent group:
•
Certificate Manager Agents group is the agent group for a Certificate Manager.
During installation the administrator can be designated as the first agent; you
are given a choice to add the administrator to the agents group. Note that this
choice also enables or disables the ability to add users to multiple groups. If
you choose to enable this feature, users can be assigned to more than one
group. If you disable this feature, users will not be allowed to be added to more
than one group.
•
Registration Manager Agents group is the agent group for a Registration
Manager. No members are added to this group during installation, you must
add members after installation.
326
Netscape Certificate Management System Administrator's Guide • June 2003
Advertisement
Table of Contents
Related Manuals for Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - ADMINISTRATOR
Related Products for Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - ADMINISTRATOR
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - CUSTOMIZATION
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - CUSTOMIZATION
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - ADMINISTRATOR
- Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - CUSTOMIZATION GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - PLUG-IN