Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
tutorial:adm:modules_crt_lrt_notification [2024/04/22 10:55]
cem 		tutorial:adm:modules_crt_lrt_notification [2024/04/23 10:59] (current)
cem [Auto-Generating or Revocation of Certificates]
Line 81: Line 81:
  
 ===== Auto-Generating or Revocation of Certificates ===== ===== Auto-Generating or Revocation of Certificates =====
 +
 +<note important> **CrtManageCertificatesForRole **expect to have defined only one certification authority in Idm! </note>
 +
 +To enable auto-generating or revocating of certificates, you would need to set **CrtManageCertificatesForRole **in (**Settings ****→**** Scheduler and Scheduled Tasks**) that triggers generate or revocate tasks automatically in user defined times. This task is not automatically sett! You should choose role which defines certificate ownership. This ensures that certificates are generated or revocated.
 +=== Setting example and explanation what will happen when LRT starts: ===
 +
 +Role - defines ownership of certificate
 +
 +{{.:crt-example.png?nolink&720x397}}
 +
 +LRT check conditions for each user:
 +
 +User have role **Certificate** and don't have valid certificate → LRT will generate new certificate for him.
 +
 +User have role **Certificate** and one or more valid certificates → nothing will be changed.
 +
 +User don't have role **Certificate** and have one or more valid certificates → LRT will revoke certificate o.
 +
 +User don’t have role **Certificate** and don’t have certificate → nothing will be changed
 +
 +At the end of this task every user with defined role will have certificate.
  
  
  • by cem