pki-ca - Certificate System - Certificate Authority
The Certificate Authority (CA) is a required PKI subsystem which issues,
renews, revokes, and publishes certificates as well as compiling and
publishing Certificate Revocation Lists (CRLs).
The Certificate Authority can be configured as a self-signing Certificate
Authority, where it is the root CA, or it can act as a subordinate CA,
where it obtains its own signing certificate from a public CA.
This package is a part of the PKI Core used by the Certificate System.
|| ABOUT "CERTIFICATE SYSTEM" ||
Certificate System (CS) is an enterprise software system designed
to manage enterprise Public Key Infrastructure (PKI) deployments.
PKI Core contains fundamental packages required by Certificate System,
and consists of the following components:
which comprise the following PKI subsystems:
* Certificate Authority (CA)
For deployment purposes, Certificate System requires ONE AND ONLY ONE
of the following "Mutually-Exclusive" PKI Theme packages:
* ipa-pki-theme (IPA deployments)
* dogtag-pki-theme (Dogtag Certificate System deployments)
* redhat-pki-theme (Red Hat Certificate System deployments)
by Endi S. Dewata (2015-05-27):
- Resolves #1225589 - unable to create rhel 7.1 replica from rhel 6 replica CA because subsystem user does not exist
by Ade Lee (2013-01-22):
- Resolves #902474 - upgrading IPA from 2.2 to 3.0 sees certmonger errors
by Ade Lee (2012-03-16):
- BZ 802396 - Change location of TOMCAT_LOG to match tomcat6 changes