Certificate Authority
Dogtag Certificate System
Before you start
6 min
verify your environment meets these requirements supported hardware {{ch}} , 7 0 2 x or later recommended operating systems fedora 28 dogtag certificate system is designed to be deployed on the fedora linux operating system {{futurex}} offers versions of the futurex pkcs #11 library for rhel 7, rhel 8, and rhel 9 we recommend installing dogtag on fedora 28, which is based on rhel 8 and has been fully tested if you plan to install dogtag on a non fedora system, you must manually build the system by following the instructions at the following link https //github com/dogtagpki/pki required access an account on the {{ch}} with administrator permissions to deploy new services local administrator/root access on the fedora linux machine running dogtag certificate system network and firewall allow outbound tcp port 2001 (default host api port) from the fedora machine running dogtag certificate system to the {{ch}} , specified by fqdn (for example, cryptohub example com ) or cidr (for example, 10 0 0 0/24 ) tls inspection or ssl proxies can break mutual tls handshakes exempt the {{ch}} fqdn(s) from inspection configure the {{ch}} with a fqdn so the exemption applies other dogtag certificate system