Features
32
Netscape Certificate Management System Administrator’s Guide • February 2003
Supports Signing of Logs
CMS allows you to sign log files digitally before archiving them or distributing
them for audit purposes. This feature enables you to check whether the log files
were tampered with after being signed. See “Signing Log Files,” on page 275 for
complete details.
Auditing
CMS can be configured to produce signed audit logs that record auditable events
from the subsystem. The audit log feature is configurable allowing you to specify
the events that are logged. An auditor user is assigned who is the only user who
can view the audit logs. This user’s certificate is used to sign and encrypt the logs.
See “Signed Audit Log,” on page 277 for complete details.
Self Tests
CMS provides the framework for self-tests of the system that are automatically run
at startup and can be run on demand. It ships with a set of self tests that are
configurable and allows you to create additional self tests using the CMS SDK. See
“Self Tests,” on page 282 for complete details.
Authorization
CMS provides a new authorization framework that allows you to create groups
and assign access control to those groups. You can also change the default access
control for prebuilt groups, and assign access control to individual users and IP
addresses. Access points for authorization have been created for the major portions
of the system allowing you to set access control rules for each of these. You can also
create additional access points and additional access control lists using the CMS
SDK. See Chapter 8, “Authorization” for complete details.
Authentication
CMS provides authentication options for certificate enrollment including
agent-approved enrollment in which an agent processes the request, and several
automated enrollments, in which an authentication method is used, and upon
successful authentication of the end-entity, the CA automatically issues a
Summary of Contents for Certificate Management System 6.1
Page 1: ...Administrator s Guide Netscape Certificate Management System Version6 1 February 2003...
Page 28: ...Documentation 28 Netscape Certificate Management System Administrator s Guide February 2003...
Page 82: ...Uninstalling CMS 82 Netscape Certificate Management System Administrator s Guide February 2003...
Page 382: ...ACL Reference 382 Netscape Certificate Management System Administrator s Guide February 2003...
Page 794: ...Managing Certificates 794 Managing Servers with Netscape Console December 2001...
Page 810: ...The SSL Handshake 810 Managing Servers with Netscape Console December 2001...
Page 828: ...828 Netscape Certificate Management System Administrator s Guide February 2003...