Configuring Authentication for End-User Enrollment522 Netscape Certificate Management System Installation and Setup Guide • October 2001Step 1. Before You BeginBefore setting up a Certificate Manager or Registration Manager to use a specificauthentication method:• Determine the authentication module you want to use. To find out about themodules that are installed with the server, see Chapter 1, “AuthenticationPlug-in Modules” of CMS Plug-ins Guide. If you want to develop and use acustom plug-in module, be sure to check the tutorials provided in thisdirectory: /cms_sdk/cms_jdk/samples/authenticationm If you decided to use the directory-based authentication module, note theauthentication directory credentials, such as the host name, port number,base DN, the user entry to bind as and the corresponding password, theDN pattern to retrieve from the directory to construct certificate subjectnames, LDAP version number, and minimum and maximum number ofconnections permitted.m If you decided to use the directory- and PIN-based authentication module,note the authentication directory credentials, such as the host name, portnumber, based DN, the user entry to bind as and the correspondingpassword, LDAP version number, and minimum and maximum numberof connections permitted.Next, read Chapter 4 , “PIN Generator Tool” of CMS Command-Line ToolsGuide. Determine the options you want to use to generate PINs andconstruct the command for generating the PINs. Note that the optfileoption enables you to put all the arguments in a file (instead of typing thearguments at the command prompt) and then point the tool to readarguments from the file.m If you decided to use the NIS server-based authentication module, note theNIS server host name and domain name. If you have an LDAP directorydeployed and want to use that for formulating the certificate subjectnames, note the directory-specific information.NOTE If you do not configure a Certificate Manager or RegistrationManager to use any of the registered authentication plug-inmodules, the server uses manual authentication for end-userenrollment. This means that all end-user enrollment requests arequeued for agent approval. For more information, see section“Manual Authentication” in Chapter 1, “Authentication Plug-inModules” of CMS Plug-ins Guide.