Admin-lite

The admin-lite role is for those users who do not know the CA password but must create a certificate.

Overview of features:

  • A config/passwords node is available for password access control on the ACL/Role Manager.
  • When advanced security is enabled, Enable CA password is on the Server Administration's Run menu, if you have write permission for passwords. You enable the CA password by specifying it on the Server Administration tool.

    Disable CA password is on the Run menu when the CA password has already been stored.

    The CA password is automatically loaded on the Certificate Manager tool if you have read permission for passwords.

Adding the passwords node to the ACL node

On the ACLs tab of the ACL/Role Manager dialog box, the passwords node is added as a child of host > sitename > integrator19.1 > config.

Server Administration dialog box

The Run menu options for admin-lite are Enable CA Password/Disable CA Password.

If the CA password is not specified or is incorrect, then Enable CA Password is shown. Specify and verify the CA password before saving it. If the attempt to save a password exceeds three times, then a warning dialog box opens.

When a user accesses the Certificate Manager, and has read permission for the passwords node, the CA password is read from the database.

When the Remember CA Password option is selected on the Certificate Manager, the CA password is loaded into the cache. This is used in all places of the Certificate Manager; otherwise, the password is read from the file each time.