PKI Development

From Dogtag
(Redirected from PKI Building)
Jump to: navigation, search

PKI Components

See the PKI Components page for details about all of the PKI subsystems that comprise the Dogtag Certificate System.


Please make sure you meet all these prerequisites before you start to build a Dogtag Certificate System.

System Prerequisites

The following system prerequisites are required to build PKI subsystems:

Runtime Tools

The following runtime environment is required to build these PKI subsystems:

Directory Server Requirements

The CA, DRM, OCSP, TKS, and TPS require the Fedora Directory Server to be installed, while the RA requires SQLite. Dogtag Certificate System uses the Fedora Directory Server to store information about certificates that it issues. The following page provides more details:

Development Tools

The following development tools are required to build these PKI subsystems:

Building the Dogtag Certificate System

Download the PKI Yum Repository Configuration File

Follow the instructions to download and install a PKI Yum repository configuration file:

Build the Dogtag Components

Dogtag 10

See PKI 10 Development.

Dogtag 9 or Earlier

See PKI 9 Development.

PKI Subsystem Instance Installation

See PKI Install Guide.

Configure the PKI Subsystem

Finally, before an instance may be utilized, the user must configure the PKI subsystem instance:

Manage PKI Instances

To create additional instances, the following command can be used:


Similarly, to remove an existing instance, the following command can be used:


Additional Information