The following example is an excerpt of the PKISERV application
in the APPLICATION section of the
pkiserv.tmpl file.
(The vertical ellipses indicate omitted sections.)
# =====================================================================
#
# Application - PKISERV
#
# The installation should customize the CONTENT, ADMINHEADER
# ADMINFOOTER, and ADMINSCOPE subsections as appropriate
#
# =====================================================================
#
<APPLICATION NAME=PKISERV> 1
<CONTENT> 2
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN""http://www.w3.org/TR/html4/loose.dtd">
<HTML lang="en"><HEAD>
<TITLE>PKI Administrators Start Page</TITLE>
%%-copyright%%
</HEAD>
<BODY>
<<H1>PKI Administrators Start Page</H1>
<p>
<A HREF="/PKIServ/cacerts/cacert.der"> 3
Install the CA certificate to enable SSL sessions for PKI Services </A>
<H2>Choose one of the following:</H1>
<p>
<h3>Manage existing certificates and certificate requests</h3>
# The following action will force userid/pw authentication for
# administrators
<FORM name=admform METHOD=GET ACTION="/PKIServ/ssl-cgi/auth/admmain.rexx"> 4
# The following action will force client certificate authentication for
# administrators
#<FORM name=admform METHOD=GET
# ACTION="PKIServ/clientauth-cgi/auth/admmain.rexx">
<p>
<INPUT TYPE="submit" VALUE="Administration Page">
</FORM>
# Multiple CA mode - replicate and modify the following H3 and FORM
# section for each CA domain.
<h3>Go to the Customers' home page </h3>
<FORM name=admform METHOD=GET ACTION="/Customers/public-cgi/camain.rexx"> 5
<p>
<INPUT TYPE="submit" VALUE="Customers' Home Page">
</FORM>
<p> %%-pagefooter%%
</BODY>
</HTML>
</CONTENT>
<ADMINHEADER> 6
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN""http://www.w3.org/TR/html4/loose.dtd">
<HTML lang="en"><HEAD>
<TITLE>Web Based Certificate Generation Administration</TITLE>
%%-copyright%%
</HEAD>
<BODY>
</ADMINHEADER>
<ADMINFOOTER>
<p> %%-pagefooter%% 7
</BODY>
</HTML>
</ADMINFOOTER>
<ADMINSCOPE> 8
# Uncomment the following line to enable multiple CA domains
#%%SelectCADomain%%
</ADMINSCOPE>
</APPLICATION>
The numbers in the following list refer
to the highlighted tags in the preceding excerpt of the PKISERV application.
- This is the beginning of the APPLICATION section. The name of
the application is PKISERV.
- This is the beginning of the CONTENT subsection. The CONTENT subsection
contains HTML to display the Web page where the administrator begins.
The TITLE indicates the main heading of that Web page, "PKI Administrators
Start Page." (See Figure 1 for
a sample of that Web page.)
- The HREF tag is the link to install the CA certificate in the
browser.
- The ACTION tag indicates where to go when the user clicks the Administration
Page button. (See Figure 1 for
a sample of that Web page.)
- The ACTION tag indicates where to go when the user clicks the Customers'
Home Page button. (See Figure 1 for
a sample of that Web page.)
- The ADMINHEADER subsection references the %%-copyright%% named
field, which is defined in the INSERT section. This should contain
the copyright statement for your company.
- The ADMINFOOTER subsection references the %%-pagefooter%% named
field, which is defined in the INSERT section. This named field should
specify the e-mail address of your PKI Services administrator.
- The ADMINSCOPE subsection references the %%SelectCADomain%% named
field, which is defined in the INSERT section. When you have multiple
CA domains, you can use this variable to allow PKI administrators
to select a CA domain on the administrator's home page. (See Adding a new CA domain for details about implementing multiple
CA domains.)
z/OS Cryptographic Services PKI Services Guide and Reference
Copyright IBM Corporation 1990, 2014