1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
|
<!-- --- BEGIN COPYRIGHT BLOCK ---
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; version 2 of the License.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License along
with this program; if not, write to the Free Software Foundation, Inc.,
51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
Copyright (C) 2007 Red Hat, Inc.
All rights reserved.
--- END COPYRIGHT BLOCK --- -->
<SCRIPT type="text/JavaScript">
function myOnLoad() {
}
function performPanel() {
with (document.forms[0]) {
submit();
}
}
</SCRIPT>
Each certificate associated with this instance needs to have a unique name within the PKI hierarchy. The following information will be used to generate these unique names. Each certificate will be stored in the security module using a unique nickname.<a href="javascript:toggle_details();">[Details]</a>
<SCRIPT type="text/JavaScript">
function toggle_details()
{
d = document.getElementById('details');
if (d.style.display == "block") {
d.style.display="none";
} else {
d.style.display="block";
}
}
</script>
<div id=details style="display: none;">
<br/>
Each unique name, called the certificate's subject name, is referenced as the distinguished name (DN). A DN may be composed of multiple comma separated name=value fields.
<br/>
</div>
<p>
#if ($errorString != "")
<img alt="" src="../img/icon_crit_update.gif"> <font color="red">$errorString</font>
#end
<br/>
#foreach ($item in $certs)
<H2>$item.getUserFriendlyName()</H2>
<table class="details">
<tr>
<th>DN:</th>
#if ($item.isEnable())
<td><input type="text" size="70" name="$item.getCertTag()" value="$item.getEscapedDN()"/></td>
#else
<td><input type="text" size="70" name="$item.getCertTag()" value="$item.getEscapedDN()" disabled="disabled" /></td>
#end
</tr>
<tr>
<th>Nickname:</th>
#if ($item.isEnable())
<td><input type="text" size="70" name="$item.getCertTag()_nick" value="$item.getNickname()"/></td>
#else
<td><input type="text" size="70" name="$item.getCertTag()_nick" value="$item.getNickname()" disabled="disabled" /></td>
#end
</tr>
</table>
<br/>
#end
<br/>
<hr>
<p>
A Certificate Authority (CA) is responsible for issuing different kinds of certificates. To obtain the certificates required internally by this subsystem, the user must select a URL to a CA that has been registered in the security domain or to an "External CA".
<p>
<i>Note: An "External CA" is defined to be a CA that is not part of the 'Security Domain'. Verisign<sup>®</sup>, GeoTrust<sup>®</sup>, and Netscape<sup>®</sup> Certificate Management System (CMS) 6.x are examples of "External CAs".</i>
<br/>
<table class="details">
<tr>
<th>URL:</th>
#if ($isRoot == "true")
<td><select name="urls" disabled="disabled">
#else
<td><select name="urls">
#end
#if ($urls.size() > 0)
#set ($x=0)
#foreach ($p in $urls)
<option value="$x">$p</option>
#set ($x=$x+1)
#end
#end
</select>
</td>
</tr>
</table>
<div align="right">
<hr />
</div>
|