Difference between revisions of "PKI Main Page"

From Dogtag
Jump to: navigation, search
(Community)
(Key Features)
Line 26: Line 26:
  
 
For more, see the [[PKI_Features|Features]] page.
 
For more, see the [[PKI_Features|Features]] page.
 +
 +
== Recent News ==
 +
 +
November 26, 2008:
 +
 +
It has recently been brought to the attention of the Dogtag developers that numerous users in the Dogtag community have encountered problems successfully running the TPS subsystem.  On Fedora 8, we believe that we have isolated this issue as being related to normal Fedora 8 updates of the following two packages:
 +
 +
    NSS 3.11 --> NSS 3.12
 +
    MOD_NSS 1.0.7-2 --> MOD_NSS 1.0.7-3 or later
 +
 +
Dogtag developers are currently working on a permanent fix for this issue.  However, until such time, users wishing to run a TPS subsystem are urged to use the original Fedora 8 GOLD bits available via http://fedoraproject.org/en/get-fedora.
 +
 +
After this fresh install it is important not to apply any updates that affect either the nss or mod_nss packages.
 +
 +
As we believe a very similar problem exists on Fedora 9, we would urge users wishing to run a TPS subsystem install this component on the aforementioned  Fedora 8 platform.
  
 
== What Can You Do? ==
 
== What Can You Do? ==

Revision as of 22:29, 26 November 2008


Overview

Welcome to the home page for the Dogtag Certificate System! We went live on March 19, 2008. Read the Red Hat announcement here, and Bob Lord's blog post here.

This site has everything you need to join the Dogtag community. Whether you are just looking for help and advice deploying and using Dogtag components, or you want to take a more active role and help shape the future of PKI, there are mailing lists and discussion channels for you to read or join.

The Dogtag Certificate System is an enterprise-class open source certificate authority (CA). It is a full-featured system, and has been hardened by real-world deployments. It supports all aspects of certificate lifecycle management, including key archival, OCSP, smartcard management, and much more. The Dogtag Certificate System can be downloaded for free and set up in less than an hour.

Key Features

Dogtag is a collection of technologies that allow enterprises to deploy PKI on a large scale. It has features such as:

  • Certificate issuance, revocation, and retrieval
  • CRL generation and publishing
  • Certificate profiles
  • Simple Certificate Enrollment Protocol (SCEP)
  • Local Registration Authority (LRA) for organizational authentication and policies
  • Encryption key archival and recovery
  • Smartcard lifecycle management
    • Token profiles
    • Token enrollment, on-hold, key recovery, and format
    • Face-to-face enrollment with the security officer workstation interface
  • Extensive documentation

For more, see the Features page.

Recent News

November 26, 2008:

It has recently been brought to the attention of the Dogtag developers that numerous users in the Dogtag community have encountered problems successfully running the TPS subsystem. On Fedora 8, we believe that we have isolated this issue as being related to normal Fedora 8 updates of the following two packages:

   NSS 3.11 --> NSS 3.12
   MOD_NSS 1.0.7-2 --> MOD_NSS 1.0.7-3 or later

Dogtag developers are currently working on a permanent fix for this issue. However, until such time, users wishing to run a TPS subsystem are urged to use the original Fedora 8 GOLD bits available via http://fedoraproject.org/en/get-fedora.

After this fresh install it is important not to apply any updates that affect either the nss or mod_nss packages.

As we believe a very similar problem exists on Fedora 9, we would urge users wishing to run a TPS subsystem install this component on the aforementioned Fedora 8 platform.

What Can You Do?

If you're a new user, check out the Users section. To run or deploy a Certificate System using pre-built components, see the following:


If you are interested in development, view the Developers section. To build a Certificate System, see the following:


Additional ideas for using Dogtag and participating in our community are in the following sections:

Community

Join our community and help shape the future of Dogtag! Here are some links to get you started:

Team, History, and Contributors

The Dogtag technology has roots that go back over 10 years. Here is some background: