karthikeyan kk wrote:
These are only organizational units as defined in the DN. you can configure it in OPENCADIR/etc/servers/*.conf. check the optionsHai Micheal,I dont understand the roles definitions of the user. We hav four types of users - Internet,Employees,Partners,TrustCenter.
DN_TYPE_*_ELEMENT_3_SELECT
You can find an explanation for the configuration of the requests in the OpenCA guide (docs/).
There is a description fo the actual RBAC mechanism in the OpenCA guide but it is subject to change in the next releases. Therefore I send you the images to show you the future plans.How are there roles in the capacity of CA_operator et al defined. Is it the purpose extension clause of X509? Its quite odd, would you pls explain me this. Give me the directions to proceed further.
Today there is a different OpenSSL configuration for every role in OPENCADIR/etc/openssl/openssl/role_name.conf and OPENCADIR/etc/openssl/extfiles/role_name.ext. If you want to use the access control mechanism of OpenCA then you can visit the configuration at the CA (CA Management -> Configuration). The details are explained in the OpenCA guide.
Michael
--
-------------------------------------------------------------------
Michael Bell Email (private): [EMAIL PROTECTED]
Rechenzentrum - Datacenter Email: [EMAIL PROTECTED]
Humboldt-University of Berlin Tel.: +49 (0)30-2093 2482
Unter den Linden 6 Fax: +49 (0)30-2093 2959
10099 Berlin
Germany http://www.openca.org
-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
_______________________________________________
OpenCA-Devel mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/openca-devel
