Create roles to refine the permissions granted to Management Console users.

Management Console users are not to be confused with operating system users with permissions on the operations described in Command reference.

To create a Management Console role

  1. Open the following URL in a Web browser. 

    https://<machine>/management-console

    Where <machine> is the IP address or domain name of the machine hosting Entrust PKI Hub.

  2. Log into the Management Console a user belonging to a role with role management permissions – for example, the initial admin administrator user. 
  3. Click the Administer menu.
  4. Select Roles to browse the existing users. 
  5. Click the Create top-left button and complete the following fields in the Create form.
  6. Click Create to confirm the changes.


Name

A unique name for the role, at least two characters long.

Description

An optional description of the role.

Permissions

The permissions granted by the role

Category

Permission

Operation

Solutions

Manage and Operate Certificate Authorities (CAs)

See Starting up Certificate Authorities

Manage CA Gateway (CAGW)

See Starting up CA Gateway

Manage Certificate Enrollment Gateway (CEG)

See Starting up Certificate Enrollment Gateway

Manage Certificate Hub

See Starting up Certificate Hub

Manage Entrust Validation Authority (EVA)

See Starting up Entrust Validation Authority

Manage Timestamping Authority (TSA)

See Starting up Timestamping Authority

Users

Manage Users 

See Creating Management Console users

Roles

Manage Roles

The role creation and management operations described in this page

Identity Providers

Manage Identity Providers

See Integrating Identity providers