Certificate Permissions

Permissions on certificates and their collections are controlled at two levels—globally at the certificate level and on a collectionClosed The certificate search function allows you to query the Keyfactor Command database for certificates from any available source based on any criteria of the certificates and save the results as a collection that will be availble in other places in the Management Portal (e.g. expiration alerts and certain reports).-by-collection basis. Global certificate permissions are controlled on the Certificates role permissions. Global collection permissions are controlled with the Certificate Collections role Modify permission used in conjunction with the collection-by-collection basis permissions controlled on the Collections Permissions tab.

Figure 348: Certificate Collection Global Permissions

Figure 349: Certificate Collection per Collection Permissions

Certificate-related permissions can be granted globally (per global permissions—Certificates) or on a collection basis (per the Certificate Permissions tab). Both options share the same permissions options, except global certificate permissions have the additional role permissions of Import Private Key and Import, which can not be assigned at the collection level.