Hello,
In our LanCrypt environment, we have two types of Security Officers:
- Administrative SO's: configure, administrate users / profiles/ keys etc
- Operative SO's: They only have to authorize the settings of the Administrative SO's
The Authorization is configured for "Create Profile". So if one (administrative) SO creates a new User in LanCrypt (added all the according keys) and wants to create the LanCrypt profile, he needs the authorization of the operative SO. There pops up a message to put in the Smart-Card (including the certificate of the operative SO) and the process will run.
So my question is now: Normally, the certificate of SO who creates the profile has to be published. But do I also have to publish the certificate of the "operative" SO (which authorized the steps)??
This thread was automatically locked due to age.
