Application Administrator

An Application Administrator takes care of the functionality of one or more server applications. Application Administrators do not necessarily need system level access if the managed application has other means of administration, for example a web based administration frontend.


A container is an isolated system with a separate root file system and operating system userland. The containers share a common operating system kernel.

Critical System Administrator

The Critical System Administrators take care of the critical systems required for the CA and RA operation, they have access to the Internet firewall and DNS setup.

Domain Key Identified Mail

A mechanism where legitimate mail for a domain is verifiable by a signature in a mail header and a corresponding public key in a specific DNS record. Outgoing mail servers for the domain have to be configured to add the necessary signature to mails for their domains.

Domain Name System

DNS maps names to other information, the most well known use case is mapping human readable names to IP addresses, but their are more applications for DNS like service discovery, storage of public keys and other public information.

Infrastructure Administrator

Infrastructure Administrators have sudo access to one or multiple infrastructure systems. Most of them are Application Administrators too.

Infrastructure Team Lead

This person is appointed to coordinate the non-critical infrastructure team by a board motion. The Infrastructure Team Lead works with Infrastructure Administrators and the Critical System Administrators.


Logical volume manager. The LVM allows to allocate space on block devices more dynamically than with traditional partitions. The block devices are managed as physical volumes (PVs) that are grouped in volume groups (VGs). Space can be allocated as logical volumes (LVs) that can be formatted using regular file system tools. LVs can be resized without reboot. LVM provides snapshot functionality that is useful for backup and upgrade procedures.


LXC is a userspace interface to the Linux kernel containment features. See The LXC introduction on the Linux containers website for more information

Support Engineer

A Support engineer handles support requests from CAcert community members.