Administrators can manage the ADSS Web RA service from the Admin portal. It is a secure portal that can only be accessed if administrators have a registered TLS certificate against their user.


A default Administrator is created as part of the ADSS Web RA installation and it comes with full rights. The default Administrator can login to the Administration Portal using the default TLS certificate.


It is recommended to change the default Administrator certificate with a production grade certificate before going live.

How to Configure?


The following are the step-by-step instructions to configure the ADSS Web RA for the production use. The admin needs to create the following entities:


  1. Update the global Configurations
  2. Create Subscriber Agreement(s) (optional)
  3. Create Vetting Form(s) (optional)
  4. Create the following connectors:
    • ADSS Server connector
    • Create SMTP connector
    • Create SMS Gateway connector (optional)
    • Create Google Captcha connector (optional but highly recommended)
  1. Create ADSS Service Profile(s)
  2. Create Service Plan

How to Use?


The following are the instructions to use the Web RA:


  1. Register an Enterprise.
  2. Register an Enterprise RAO for this Enterprise in Access Control.
  3. Enterprise RAO login to the ADSS Web RA Admin and invite users.
  4. Users activate their accounts by following the link sent in the invitation email.
  5. Users submit certificate requests from ADSS Web RA Web Portal.
  6. Enterprise RAO vet the certificate requests (optional - only needed if the vetting is enabled in the related ADSS Service Profile).
  7. Requests are submitted for Dual Authorization (optional - only needed if the vetting is enabled in the related ADSS Service Profile and the Dual Control is enabled from the Global Settings)
  8. Enterprise RAO can see the issued certificates in the Certificates menu


Access Control Information


There are some certain rules on the basis of which the graphical information appears under  Dashboard, to have an overview of expiring certificates, certificates requests, revocation, renewal, or rekey of certificate requests. These rules are based on the user's type which includes Enterprise RAOs, Admin RAOs or Administrators.


Roles

Allowed Features

Enterprise RAO
  • Expiring certificates graph shows the certificates that have been expired recently, or about to expire in next 30, 60 or 90 days. These certificate details include only those certificates that are being managed by that particular enterprise RAO.
  • Certificates requests, renewal, rekey or revocation requests graph shows the total number of certificates requests with reference to their statuses i.e. Pending, Approved or Declined. These requests only shows the details of those requests which are being managed by that particular enterprise RAO for the assigned enterprises.

Admin RAO
  • Expiring certificates graph shows the certificates that have been expired recently, or about to expire in next 30, 60 or 90 days. These certificate details include all the certificates list, irrespective of whether they are being managed by an enterprise RAO or admin RAO.
  • An admin RAO can view the graph including details of registered enterprises in the month, if that admin RAO is allowed to view enterprises according to assigned role.
  • An admin RAO can view the graph including details of enterprise registration requests with reference to three available modes i.e. Pending, Approved or Declined, if that admin RAO is allowed to view enterprise requests according to assigned role.
  • Certificates requests, renewal, rekey or revocation requests graph shows the total number of certificates requests with reference to their statuses i.e. Pending, Approved or Declined. These requests only shows the details of those requests which are being managed by that particular admin RAO i.e. ‘Only admin can vet’ is configured for such requests.

 Administrators
  • Expiring certificates graph shows the certificates that have been expired recently, or about to expire in next 30, 60 or 90 days. These certificate details include all the certificates list, and an administrator can view all such certificates.
  • An administrator can view the graph including details of registered enterprises in the month, if that administrator is allowed to view enterprises according to assigned role.
  • An administrator can view the graph including details of enterprise registration requests with reference to three available modes i.e. Pending, Approved or Declined, if that administrator is allowed to view enterprise requests according to assigned role.
  • Certificates requests, renewal, rekey or revocation requests graph shows the total number of certificates requests with reference to their statuses i.e. Pending, Approved or Declined. All types of requests can be viewed by an administrator.