The following describes how to create an admin user and add the user to the Super Administrator Role.
Create Admin User
To create an admin user, do the following:
- In the EJBCA RA Web, select Make New Request from the Enroll menu.
- Select Certificate Type=AdminEndEntity and CA=ManagementCA.
- Select the Key algorithm desired.
- Enter a CN, Common Name for the Administrator.
- Username: Enter a username, same as the CN, Common Name.
- Enrollment code: Enter the Enrollment Code (password) twice. This will be the same password that is used to protect the certificate bundle once downloaded.
- Click Download PKCS#12 and save the certificate file.
Add User as Admin
To add the user as admin, do the following:
- Go to the EJBCA Administration Interface on:
https://<EJBCA FQDN>/ejbca/adminweb/
- Under System Functions, click Administrator Role.
- On the Super Administrator Role, click Members.
- Specify the following for the admin role:
- Match with: Select X509:CN, Common name.
- CA: Select Management CA for the CA to match on.
- Match Operator: Specify Equal, case sens.
- Match Value: The CN value from the created certificate created. In this case, according to the steps above, "jdoe". Note that this is a case sensitive matching.
- Description: Enter a description, for example a full name.
- Click Add to add the user to the Super Administrator Role.