The web enrolment service allows “unknown” users in the user database to request the creation of their access accounts (internet, mail server, all services that require authentication) and their certificates.

This module requires at least the use of an LDAP database for user requests and a root CA (internal PKI) for user certificate requests.

To enable users to submit enrollment requests, the captive portal must be configured and allow web enrollment for users. Enrollment can be enabled in Configuration > Users > Authentication, Captive portal profiles tab.

This screen consists of three zones:

  • The grid containing user enrollment requests and certificate requests,
  • A zone containing information about the selected enrolment request,
  • An Advanced properties section.