Overview

Contents

Overview#

This page describes how the subsystem user is created and used.

Creation#

The subsystem user is created in CertUtil.addUserCertificate() with the following user ID:

<subsystem type>-<hostname>-<port>

For example: CA-server.example.com-8443

The subsystem user will contain a subsystem certificate (subsystemCert cert-pki-tomcat).

Usage#

The subsystem user UID is used in the following cases:

requesting for subsystem certificate from a remote CA (see ConfigurationUtils.configCert())
requesting for subsystem certificate from an SD CA (see ConfigurationUtils.configCert())
registering user (see ConfigurationUtils.registerUser())
updating security domain (see UpdateDomainXML.process())

References#

Subsystem Certificate