Open Source PKI

From Dogtag

Contents

PKI Components

See the PKI Components page for details about all of the PKI subsystems that comprise the Dogtag Certificate System.

Prerequisites

Please make sure you meet all these prerequisites before you attempt to run a Dogtag Certificate System.

System Prerequisites

The following system prerequisites are required to build PKI subsystems:

Runtime Tools

The following runtime environment is required to build these PKI subsystems:

Directory Server Requirements

The CA, DRM, OCSP, TKS, and TPS require the Fedora Directory Server to be installed, while the RA requires SQLite. Dogtag Certificate System uses the Fedora Directory Server to store information about certificates that it issues. The following page provides more details:

Installing PKI Packages

Using Yum to Download the PKI Packages

Follow the instructions to use Yum to download and install PKI packages:

Certificate Authority (CA)

To install a CA subsystem, become the root user, and execute the following commands:

   yum install pki-ca

This will install many dependencies, too.

Data Recovery Manager (DRM)

To install a DRM subsystem, become the root user, and execute the following commands:

   yum install pki-kra

This will install many dependencies, too.

Online Certificate Status Protocol Manager (OCSP)

To install an OCSP subsystem, become the root user, and execute the following commands:

   yum install pki-ocsp

This will install many dependencies, too.

Registration Authority (RA)

To install an RA subsystem, become the root user, and execute the following commands:

   yum install pki-ra

This will install many dependencies, too.

Token Key Service (TKS)

To install a TKS subsystem, become the root user, and execute the following commands:

   yum install pki-tks

This will install many dependencies, too.

Token Processing System (TPS)

To install a TPS subsystem, become the root user, and execute the following commands:

   yum install pki-tps

This will install many dependencies, too.

Installing PKI Subsystems

Dogtag 10

See the Quick Start page.

Dogtag 9

See Dogtag 9 Installation.

Dogtag 1.3 and Earlier

See Dogtag 1 Installation.

Additional Information