The private keys can be accessed online or offline, the mode that is used to access these keys is determined by the AllowOfflineUseOfKeyBag ArcotID PKI attribute. This attribute determines whether the user is permitted offline access to their key bag. If the value of this attribute is set to True, then user can register their offline password, create an offline key bag, and then can access their keys and certificates offline.
The following table lists the values that are supported by the AllowOfflineUseOfKeyBag attribute:
|
Value |
Description |
|---|---|
|
TRUE |
Specify this value if you want to enable the user to have offline access to their signing and encryption keys. If AllowOfflineUseOfKeyBag is set to TRUE, then the users must set their offline password by using the Arcot Offline Tool, and use this password to access the offline key bag. Note: By default, offline access is enabled. |
|
FALSE |
Specify this value if you do not want to enable offline access to users, which means users must be online (connected to the server) to access their signing and encryption keys. If AllowOfflineUseOfKeyBag is set to FALSE, then the user has to perform the regular ArcotID PKI authentication for accessing keys. |
|
Copyright © 2013 CA Technologies.
All rights reserved.
|
|