Administrators Page

On the Administrators page, the Authorizers lists administrator certificates that have been explicitly granted access and specific roles. For information on the roles, see https://keyfactor.atlassian.net/wiki/x/egDlb.

If Allow Any Administrator is set to Allow any, any administrator with a valid certificate is granted the Admin role, even if the administrator is not listed. If set to Only listed, only the administrators listed in the table are allowed.

Action

Description

Edit

For an existing authorization rule, the corresponding Edit button allows for changing the values.

Click Edit.
Make the wanted changes to the Certificate serial number field, Issuer DN field, and for the Roles.
Click the Submit button to save the updated rule.

Remove

For an existing authorization rule, the corresponding Remove button allows to remove a rule.

Confirm the removal by clicking the Remove button.

Add...

Adds a new authorization rule.

Fill in the Certificate serial number in hex format and the Issuer DN. Alternatively use the ... (browse) button to upload a certificate to load it from or use the Load Current button to fill in the values from your administrator certificate.
Select the Roles that should be assigned.
Click the Add button to have the new rule saved.

Allow Any Administrator

Before switching to the Only listed setting, make sure your credentials are listed, otherwise your access will be directly denied after the switch.

Action	Description
Switch to Only listed	If the current setting is to allow any administrator, clicking this button switches to the other mode.
Switch to Allow Any	If the current setting is to only allow listed administrators, clicking this button switches to the other mode.

Peer Systems

Action	Description
Allow incoming connections	Check this check box and click the Save button in order to allow incoming connections from Peer Systems.
Save	Saves the state of the Allow incoming connections check box.

Incoming Connections

Column/Action	Description
Remote identity	The subject DN from the client certificate for the incoming connection.
Remote address	The IP address of the incoming connection.
Last seen	The date and time the connection was last made.
Authorized	If the certificate is in the Peer Systems role.
Clear	Click the button to forget the connection.
Modify Authorization	The button is visible if there is a rule for the certificate. Clicking the button opens the Edit Authorization page for the rule.
Add Authoriztion...	The link is visible if there is not a rule for the certificate. Clicking the link opens the Add Authorization page with the certificate information filled in and the Peers Role selected.