Difference between revisions of "CRL Publishing"

From Dogtag
Jump to: navigation, search
m (References)
m (Replaced content with "This page has been moved to https://github.com/dogtagpki/pki/wiki/Publishing-Configuration.")
 
Line 1: Line 1:
= Configuration =
+
This page has been moved to https://github.com/dogtagpki/pki/wiki/Publishing-Configuration.
 
 
== General ==
 
 
 
<pre>
 
ca.publish.createOwnDNEntry=false
 
 
 
ca.publish.queue.enable=true
 
ca.publish.queue.maxNumberOfThreads=3
 
ca.publish.queue.pageSize=40
 
ca.publish.queue.priorityLevel=0
 
ca.publish.queue.saveStatus=200
 
</pre>
 
 
 
== Mappers ==
 
 
 
<pre>
 
ca.publish.mapper.impl.LdapCaSimpleMap.class=com.netscape.cms.publish.mappers.LdapCaSimpleMap
 
ca.publish.mapper.impl.LdapDNCompsMap.class=com.netscape.cms.publish.mappers.LdapCertCompsMap
 
ca.publish.mapper.impl.LdapDNExactMap.class=com.netscape.cms.publish.mappers.LdapCertExactMap
 
ca.publish.mapper.impl.LdapEnhancedMap.class=com.netscape.cms.publish.mappers.LdapEnhancedMap
 
ca.publish.mapper.impl.LdapSimpleMap.class=com.netscape.cms.publish.mappers.LdapSimpleMap
 
ca.publish.mapper.impl.LdapSubjAttrMap.class=com.netscape.cms.publish.mappers.LdapCertSubjMap
 
ca.publish.mapper.impl.NoMap.class=com.netscape.cms.publish.mappers.NoMap
 
 
 
ca.publish.mapper.instance.LdapCaCertMap.createCAEntry=true
 
ca.publish.mapper.instance.LdapCaCertMap.dnPattern=UID=$subj.cn,OU=people,O=$subj.o
 
ca.publish.mapper.instance.LdapCaCertMap.pluginName=LdapCaSimpleMap
 
 
 
ca.publish.mapper.instance.LdapCrlMap.createCAEntry=true
 
ca.publish.mapper.instance.LdapCrlMap.dnPattern=UID=$subj.cn,OU=people,O=$subj.o
 
ca.publish.mapper.instance.LdapCrlMap.pluginName=LdapCaSimpleMap
 
 
 
ca.publish.mapper.instance.LdapUserCertMap.dnPattern=UID=$subj.UID,OU=people,O=$subj.o
 
ca.publish.mapper.instance.LdapUserCertMap.pluginName=LdapSimpleMap
 
 
 
ca.publish.mapper.instance.NoMap.pluginName=NoMap
 
</pre>
 
 
 
== Publishers ==
 
 
 
<pre>
 
ca.publish.publisher.impl.FileBasedPublisher.class=com.netscape.cms.publish.publishers.FileBasedPublisher
 
ca.publish.publisher.impl.LdapCaCertPublisher.class=com.netscape.cms.publish.publishers.LdapCaCertPublisher
 
ca.publish.publisher.impl.LdapCertificatePairPublisher.class=com.netscape.cms.publish.publishers.LdapCertificatePairPublisher
 
ca.publish.publisher.impl.LdapCrlPublisher.class=com.netscape.cms.publish.publishers.LdapCrlPublisher
 
ca.publish.publisher.impl.LdapDeltaCrlPublisher.class=com.netscape.cms.publish.publishers.LdapCrlPublisher
 
ca.publish.publisher.impl.LdapUserCertPublisher.class=com.netscape.cms.publish.publishers.LdapUserCertPublisher
 
ca.publish.publisher.impl.OCSPPublisher.class=com.netscape.cms.publish.publishers.OCSPPublisher
 
 
 
ca.publish.publisher.instance.LdapCaCertPublisher.caCertAttr=caCertificate;binary
 
ca.publish.publisher.instance.LdapCaCertPublisher.caObjectClass=pkiCA
 
ca.publish.publisher.instance.LdapCaCertPublisher.pluginName=LdapCaCertPublisher
 
 
 
ca.publish.publisher.instance.LdapCrlPublisher.crlAttr=certificateRevocationList;binary
 
ca.publish.publisher.instance.LdapCrlPublisher.pluginName=LdapCrlPublisher
 
ca.publish.publisher.instance.LdapCrlPublisher.crlObjectClass=pkiCA
 
 
 
ca.publish.publisher.instance.LdapCrossCertPairPublisher.caObjectClass=pkiCA
 
ca.publish.publisher.instance.LdapCrossCertPairPublisher.crossCertPairAttr=crossCertificatePair;binary
 
ca.publish.publisher.instance.LdapCrossCertPairPublisher.pluginName=LdapCertificatePairPublisher
 
 
 
ca.publish.publisher.instance.LdapDeltaCrlPublisher.crlAttr=deltaRevocationList;binary
 
ca.publish.publisher.instance.LdapDeltaCrlPublisher.crlObjectClass=pkiCA,deltaCRL
 
ca.publish.publisher.instance.LdapDeltaCrlPublisher.pluginName=LdapDeltaCrlPublisher
 
 
 
ca.publish.publisher.instance.LdapUserCertPublisher.certAttr=userCertificate;binary
 
ca.publish.publisher.instance.LdapUserCertPublisher.pluginName=LdapUserCertPublisher
 
</pre>
 
 
 
== Rules ==
 
 
 
<pre>
 
ca.publish.rule.impl.Rule.class=com.netscape.cmscore.ldap.LdapRule
 
 
 
ca.publish.rule.instance.LdapCaCertRule.enable=false
 
ca.publish.rule.instance.LdapCaCertRule.mapper=LdapCaCertMap
 
ca.publish.rule.instance.LdapCaCertRule.pluginName=Rule
 
ca.publish.rule.instance.LdapCaCertRule.predicate=
 
ca.publish.rule.instance.LdapCaCertRule.publisher=LdapCaCertPublisher
 
ca.publish.rule.instance.LdapCaCertRule.type=cacert
 
 
 
ca.publish.rule.instance.LdapCrlRule.enable=false
 
ca.publish.rule.instance.LdapCrlRule.mapper=LdapCrlMap
 
ca.publish.rule.instance.LdapCrlRule.pluginName=Rule
 
ca.publish.rule.instance.LdapCrlRule.predicate=
 
ca.publish.rule.instance.LdapCrlRule.publisher=LdapCrlPublisher
 
ca.publish.rule.instance.LdapCrlRule.type=crl
 
 
 
ca.publish.rule.instance.LdapUserCertRule.enable=false
 
ca.publish.rule.instance.LdapUserCertRule.mapper=LdapUserCertMap
 
ca.publish.rule.instance.LdapUserCertRule.pluginName=Rule
 
ca.publish.rule.instance.LdapUserCertRule.predicate=
 
ca.publish.rule.instance.LdapUserCertRule.publisher=LdapUserCertPublisher
 
ca.publish.rule.instance.LdapUserCertRule.type=certs
 
 
 
ca.publish.rule.instance.LdapXCertRule.enable=false
 
ca.publish.rule.instance.LdapXCertRule.mapper=LdapCaCertMap
 
ca.publish.rule.instance.LdapXCertRule.pluginName=Rule
 
ca.publish.rule.instance.LdapXCertRule.predicate=
 
ca.publish.rule.instance.LdapXCertRule.publisher=LdapCrossCertPairPublisher
 
ca.publish.rule.instance.LdapXCertRule.type=xcert
 
</pre>
 
 
 
= References =
 
 
 
* [[CRL]]
 
* [https://github.com/dogtagpki/pki/wiki/Configuring-CRL-Publishing Configuring CRL Publishing]
 
* [https://github.com/dogtagpki/freeipa/wiki/CRL-Publishing IPA CRL Publishing]
 
* [https://access.redhat.com/knowledge/docs/en-US/Red_Hat_Certificate_System/8.0/html/Admin_Guide/Setting_up_Publishing.html RHCS 8.0 - Admin Guide - Setting up Publishing]
 

Latest revision as of 19:49, 29 July 2022

This page has been moved to https://github.com/dogtagpki/pki/wiki/Publishing-Configuration.