** Updated 7/18/07 from training 9/5/07 training meeting **  

BEFORE POSTING:

1.  link from wiki

2.  link to PKI info

3.  this on wiki

4.  instructions (color) from TAS training -- get from ismael

We can modify these as necessary but I started out with the procedure for changing PID passwords and altered to fit the model of revoking certificates.  We will discuss at 6/31 meeting.I would like to set up training for the VTOC during a normal training session (Wednesdays at 8a and 3p to accommodate both shifts) in the next couple of weeks.   In addition to the BRIEF procedures below, we should also document how to complete the 'revocation reason' portion of the TAS screen.

  • VTOC staff are only authorized to revoke certificates when requested by an individual calling 231-4357 (4Help). 
  • A Remedy ticket should be entered for each certificate revoked (NOTE:  we will need to add a classification such as 'PKI Cert Revoke to Remedy causes).
  • The individual should be able to verify identity following the criteria below. We cannot revoke certificates for other individuals (e.g. children or a spouse).
  • The caller should provide 3 pieces of information that we can verify on the TAS (Token Administration System) Revoke Certificate screen. 
    • One of the pieces of information must be the VT ID#.  We cannot revoke a certificate unless the caller can provide their VT ID# for entry into the TAS certificate revocation application.
    • Other information that can be verified on the TAS Revoke Certificate screen can be:
      • Date of birth
      • Office Phone number
      • Major Code or Major
      • Local Phone Number
      • Department
      • Mail Stop
      • VT PID
  • Record in the TAS notes field:
    1. The name of the caller.
    2. Request the VT ID number of the caller and record, if given.
    3. The reason given for revoking the certificate.
  • If an individual CANNOT provide identifying information, the certificate can still be revoked by escalating the call to the shift supervisor or VTOC management.  This should be well documented in the Remedy ticket.
  • The call center should escalate calls requesting revocation of a certificate of an employee when requested by the supervisor or department head to the shift supervisor or management.
  • If multiple certificates are displayed in the TAS Revoke Certificate screen then revoke all certificates, unless the user can tell you which specific certificate to revoke.
  • No labels