List of Tables

3-1 Certificate Types

3-2 Implementation Checklist

3-3 Certificate Lifetimes

3-4 Implementation Checklist for MyPKIsite.com

4-1 DN Information for the Administrator's Certificate

4-2 Elements on Which You Can Search

4-3 Elements Specifying Certificate Serial Number Range for Searches

4-4 Installation Values for Wallets, CRL, and OHS Port (See Note 1.)

5-1 Notification Sub-tab Tasks and Discussions in Configuration Management

5-2 General Sub-tab Tasks and Discussions in Configuration Management

5-3 Policy Sub-tab Tasks and Discussions in Configuration Management

5-4 Tokens for Customizing E-mail

5-5 Supported Token Values

6-1 Policy Concepts, Terms, and Definitions in OracleAS Certificate Authority

6-2 Default Constraint-specific Policy Rules

6-3 Parameters in the RSA Key Constraints Policy Rule

6-4 Parameters in the ValidityRule Policy

6-5 Parameters in the UniqueCertificateConstraint Policy Rule

6-6 Parameters in the Revocation Constraints Policy Rule

6-7 Parameters in the Renewal Constraints Policy Rule

6-8 Logical Operators

6-9 Predicate Attributes

6-10 Steps in Custom Policy Plug-in Processing

7-1 Tuning Database Usage

7-2 Customization of Single Sign-On Popup Screens

7-3 Storage Locations for OracleAS Certificate Authority Log and Trace Data

7-4 Scenarios for Backup/Recovery

7-5 Backup/Recovery Tools

8-1 Choices for Certificate Usage

8-2 Types of Authentication

A-1 Links to Commands and Configuration Operations

A-2 Operations and Parameters of the OracleAS Certificate Authority (OCA) ocactl Tool

A-3 Password Types and Uses

A-4 Privileged Roles and the setpasswd Command

A-5 Revocation Reasons for Use with revokecert Command

D-1 Types of Certificate Usage

D-2 Policies Applied for Particular Certificate Usages