Red Hat CERTIFICATE 8.0 RELEASE NOTES Installationsanleitung PDF herunterladen (Seite 6)

These release notes contain important information related to Red Hat Certificate System 8.0 that may

not be currently available in the Product Manuals. New features, system requirements, installation notes,

known problems, resources, and other current issues are addressed here. You should read these

Release Notes in their entirety before deploying Red Hat Certificate System 8.0.

1. New Features for Red Hat Certificate System 8.0

Red Hat Certificate System 8.0 is a major release of Certificate System, and many new, contemporary

features have been added and existing features have been made more robust and flexible.

1.1. Certificate Renewal

Certificate renewal for all Certificate System-issued certificates has been reintroduced using the new

profile framework. T here are a number of new profiles to use for renewal, including encryption and

signing certificates for both standard use and on tokens, and server certificate renewal. New inputs have

been added to manage certificate renewal, so corresponding renewal profiles can be created for custom

enrollment profiles.

1.2. Improved Subsystem Cloning

Cloning has been enhanced with distributed numeric assignments logic so that cloned CAs can

efficiently divide and use serial numbers for certificates without becoming blocked because of

inadequate serial number ranges.

1.3. Stronger SELinux Policies

SELinux policies are now required for every subsystem and run in enforcing mode by default, providing

much more protection for Certificate System processes.

1.4. Improved UTF8 Support

The CA, OCSP, and DRM subsystems fully accept and interpret certificate requests generated using

UTF-8 characters, both in the console and in the agent services pages. This support is for specific

fields.

End users can submit certificate requests with UTF-8 characters in those fields and end users and

agents can search for and retrieve certificates and CRLs in the CA and retrieve keys in the DRM when

using those field values as the search parameters.

Four fields fully-support UTF-8 characters:

Common name (used in the subject name of the certificate)

Organizational unit (used in the subject name of the certificate)

Requester name

Additional notes (comments appended by the agent to the certificate)

NOTE

This support does not include supporting internationalized domain names, like in email

addresses.

1.5. Enhanced Support for Third-Party ECC Modules

1. New Features for Red Hat Certificate System 8.0

1 2 3 4 5 6 7 8 9 10 11 ... 43 44

Keine Kommentare

Red Hat CERTIFICATE 8.0 RELEASE NOTES Installationsanleitung Seite 6