Automated Enrollment
Chapter
9
Authentication
407
4.
Go to the following directory:
<server_root>/bin/cert/tools
5.
Type the following command:
CMCEnroll -d<directory_containing_agent_cert> -n<the
certificate_common_name> -r<certificate_request_file>
-p<certificate_DB_passwd>
For example, if the input file created in step 3 is called
request34.txt
, your
agent’s certificate is stored in the directory
/netscape/certs
, the certificate
common name of your agent’s certificate for this CA is
CertificateManagerAgentsCert
, and your password for the certificate
database is
1234pass
, the command would look as follows:
CMCEnroll -d”/netscape/certs” -n”CertificateManagerAgentsCert”
-r /export/requests/request34.txt -p 1234pass
The output of this command is stored in a file with the same filename and
.out
appended to the filename.
6.
Enable the end entity page for this feature. See “Enable the End Entity pages
for CMC Enrollment” on page 406.
7.
Submit your signed certificate using the end entity port.
a.
Go the End Entity port.
b.
Select CMC Enrollment from the main end entity page.
c.
Paste the content of the output file into the first text area of this form.
d.
Remove
"-----BEGIN NEW CERTIFICATE REQUEST-----"
and
"----END
NEW CERTIFICATE REQUEST-----"
from the pasted content.
e.
Select Certificate Type User Certificate, fill in the contact information, and
submit the form.
8.
The certificate will be immediately processed and returned since a signed
request was sent, and the CMCAuth plug-in was enabled.
9.
Use the agent page to search for the new certificates.
Note: With Netscape 4.x, the browser will return the message “the private key is
not available”. With Netscape 7.x, the browser will return “Your certificate has
been imported into the browser!”. In both cases, regardless of the return messages
the certificate is not actually imported into the browser because we generated the
certificate request outside of the browser in step 2 and it does not have this private
key.
Содержание Certificate Management System 6.1
Страница 1: ...Administrator s Guide Netscape Certificate Management System Version6 1 February 2003...
Страница 28: ...Documentation 28 Netscape Certificate Management System Administrator s Guide February 2003...
Страница 68: ...Support for Open Standards 68 Netscape Certificate Management System Administrator s Guide February 2003...
Страница 82: ...Uninstalling CMS 82 Netscape Certificate Management System Administrator s Guide February 2003...
Страница 166: ...How a Registration Manager Works 166 Netscape Certificate Management System Administrator s Guide February 2003...
Страница 382: ...ACL Reference 382 Netscape Certificate Management System Administrator s Guide February 2003...
Страница 566: ...Managing Policy Plug in Modules 566 Netscape Certificate Management System Administrator s Guide February 2003...
Страница 710: ...1 3 Organization Security Policies 710 Netscape Certificate Management System Administrator s Guide February 2003...
Страница 716: ...Object Identifiers 716 Netscape Certificate Management System Administrator s Guide February 2003...
Страница 762: ...DNs in Certificate Management System 762 Netscape Certificate Management System Administrator s Guide February 2003...
Страница 794: ...Managing Certificates 794 Managing Servers with Netscape Console December 2001...
Страница 810: ...The SSL Handshake 810 Managing Servers with Netscape Console December 2001...
Страница 828: ...828 Netscape Certificate Management System Administrator s Guide February 2003...