Figure 6.4. Key Detail Page for Recovering Keys
The number of key recovery agent authorizations required to recover a key is configured by the DRM administrator
by setting the following parameters in the
CS.cfg
file.
kra.noOfRequiredRecoveryAgents=1
kra.recoveryAgentGroup=Data Recovery Manager Agents
4.
Set the PKCS #12 token password that the requester uses to import the recovered certificate/key pair package.
5.
Optionally, set a certificate nickname for the archived key.
6.
Paste the base-64 encoded certificate corresponding to the archived key into the text area.
The certificate can be searched and viewed through the Certificate Manager agent services pages.
If the archived key was found through the corresponding public key, the certificate information is automatically trans-
ferred to the form.
7.
Click Recover to initiate the key recovery request.
Selecting this option notifies the key recovery agents that a recovery has been initiated and gives them the recovery
authorization reference number.
NOTE
2.2. Recovering Keys
47
Chapter 6. DRM: Recovering Encrypted
Summary of Contents for CERTIFICATE SYSTEM 7.2 - AGENT GUIDE
Page 1: ...Red Hat Certificate System Agent Guide 7 2 ...
Page 3: ......