Figure 27.1 illustrates how Certificate Management System issues a server certificate in a deployment scenario involving a Registration Manager acting as an enrollment authority to a Certificate Manager. The server certificate is requested via a manual enrollment form hosted by the Registration Manager.
The section "Step 2. Set Up the Directory for Publishing" contains information on setting up Netscape Directory Server for publishing certificates and CRLs--it covers directory schema required for publishing certificates and the attributes to which a Certificate Manager publishes end-entity certificates and CRLs.