Manuals database logo
manualsdatabase
Your AI-powered manual search engine

Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 manuals

NETSCAPE MANAGEMENT SYSTEM 6.0 first page preview

NETSCAPE MANAGEMENT SYSTEM 6.0

Brand: Netscape | Category: Server
Table of contents
  1. netscape console
  2. Table Of Contents
  3. Table Of Contents
  4. Table Of Contents
  5. Table Of Contents
  6. Table Of Contents
  7. Table Of Contents
  8. Table Of Contents
  9. Table Of Contents
  10. Table Of Contents
  11. Table Of Contents
  12. About This Guide
  13. Viewing This Guide Online
  14. Getting Additional Help
  15. To Open the Product Homepage
  16. Chapter 1 Introducing Netscape Console and Administration Server
  17. The Setup Program
  18. Installation Modes
  19. To Install Netscape Console as a Stand-Alone Application on Windows NT
  20. Upgrading Administration Server and Console
  21. To Upgrade on Windows NT
  22. Upgrading a Stand-Alone Version of Netscape Console
  23. To Upgrade a Stand-Alone Version of Netscape Console on Windows NT
  24. Silent Installation
  25. To Perform a Silent Installation
  26. To Uninstall a Netscape Server on UNIX
  27. Silent Uninstallation
  28. To Perform a Silent Uninstallation on Windows NT
  29. Starting Netscape Console and Logging In
  30. To Start Netscape Console on Windows NT
  31. Logging in to Netscape Console With a User Name and Password
  32. Logging in to Netscape Console Using Client Authentication
  33. To Request and Install a New Client Certificate
  34. To Make Your Client Certificate Available to Netscape Console on Windows NT
  35. A Tour of Netscape Console
  36. Netscape Console Tabs
  37. The Administration Domain
  38. To Modify an Administration Domain
  39. To Remove an Administration Domain
  40. Storing Display Settings
  41. Setting Display Fonts
  42. To Edit an Existing Font Profile
  43. To Use a Font Profile
  44. Customizing the Main Window
  45. Customizing Tables
  46. To Change the Width of Columns in a Table
  47. Working with Custom Views
  48. To Rename a Custom View
  49. Administration Express
  50. Using Administration Express
  51. Setting the Refresh Rate for Administration Express
  52. Adding a Pre-4.0 Server to the Tree
  53. To Add a Pre-4.0 Server to the Navigation Tree
  54. To Migrate from a Pre-4.0 Server to a Newer Version
  55. Working with Netscape Servers
  56. Creating a New Server Instance
  57. To Create a New Server Instance
  58. Cloning a Server
  59. Uninstalling a Netscape Server
  60. To Merge Configuration Data from Two Directory Servers
  61. Interacting with Directory Server
  62. Using Distinguished Names
  63. Attributes
  64. DN and Attribute Guidelines and Syntax
  65. Locating a User or Group in the Directory
  66. To Locate Users or Groups in the Directory
  67. Choosing a Different Directory to Search
  68. Users
  69. The User's Preferred Language
  70. To Create an Administrator
  71. To Enable Windows NT and UNIX Panels for an Individual User
  72. To Set Windows NT and UNIX Options and Attributes for a New User
  73. Groups
  74. To Create a Static Group in the Directory
  75. To Add Users to the Configuration Administrators Group
  76. To Create a Dynamic Group
  77. To Create a Certificate Group
  78. Organizational Units
  79. Modifying Existing Directory Entries
  80. To Change the Configuration Administrator's User Name or Password
  81. To Change the Administration Server Administrator's User Name or Password
  82. Restarting Administration Server
  83. To Restart the Server from Netscape Console
  84. To Restart the Server from the NT Control Panel
  85. To Stop the Server from the NT Control Panel
  86. To View the Access Log
  87. To Change Where Logs are Stored
  88. To Access the Administration Page
  89. Network Settings
  90. To Configure Network Settings
  91. Access Settings
  92. To Set Administration Server Access Settings
  93. Encryption Settings
  94. To Activate SSL on Administration Server
  95. Directory Settings
  96. Changing the Host or Port Number
  97. The User Directory
  98. User Directory Settings
  99. To Change the User Directory Settings for a Domain
  100. To Change User Directory Settings for a Server Group
  101. admconfig
  102. Options
  103. Tasks and Their Arguments
  104. Examples
  105. ldapsearch, ldapmodify, and ldapdelete
  106. Syntax
  107. Tasks and Options
  108. Usage
  109. JAR Information File
  110. JAR Information File Syntax
  111. Examples of Using modutil
  112. Part 4 Advanced Server Management
  113. Chapter 9 Access Control
  114. Examples of Access Control
  115. Setting Access Permissions For Servers
  116. Working With Access Control Instructions
  117. Bind Rules
  118. To Specify What You Want an ACI to Apply To
  119. To Create a New ACI with the Visual ACI Editor
  120. To Create a New ACI with the Manual ACI Editor
  121. To Edit an Existing ACI with the ACI Editor
  122. To Remove an ACI
  123. The SSL and TLS Protocols
  124. SSL and TLS Ciphers
  125. Preparing to Use SSL and TLS Encryption
  126. To Install an External Security Device
  127. Obtaining and Installing a Server Certificate
  128. Preparing to Set Up SSL and TLS
  129. Sending a Server Certificate Request
  130. Installing the Certificate
  131. To Install a CA Certificate or Server Certificate Chain
  132. Backing Up and Restoring Your Certificate Database
  133. Activating SSL
  134. Managing Server Certificates
  135. Changing the CA Trust Options
  136. To Change a Security Device Password
  137. To View, Add, or Delete a CRL or CKL
  138. Using Client Authentication
  139. Preparing to Use Client Authentication
  140. DNComps
  141. FilterComps
  142. CmapLdapAttr
  143. To Edit the certmap.conf File
  144. Example certmap.conf Mappings
  145. Example of a Mapping with an Attribute Search
  146. To Set Up Client Authentication Between Servers
  147. Client Authentication for Users
  148. SNMP Basics
  149. How SNMP Works
  150. The Administration Server MIB
  151. Types of SNMP Messages
  152. Setting Up SNMP on UNIX
  153. Using a Proxy SNMP Agent on UNIX
  154. Installing and Starting the Proxy SNMP Agent
  155. To Restart the Native Agent
  156. Configuring the Master Agent on UNIX
  157. To Add, Edit, or Remove a Community String using Netscape Console
  158. To Add, Edit, or Remove a Trap Destination
  159. Manually Configuring the Master Agent
  160. Editing the Master Agent Config File
  161. Starting the Master Agent on UNIX
  162. Starting the Agent from the Command Line
  163. To Start the Agent on a Non-Standard Port using System Services
  164. Part 5 Appendixes
  165. Appendix A Fortezza
  166. How Fortezza Crypto Cards are Certified
  167. CRLs and CKLs
  168. To Enable Fortezza on Administration Server
  169. Internet Security Issues
  170. Encryption and Decryption
  171. Symmetric-Key Encryption
  172. Public-Key Encryption
  173. Key Length and Encryption Strength
  174. Digital Signatures
  175. Certificates and Authentication
  176. A Certificate Identifies Someone or Something
  177. Authentication Confirms an Identity
  178. Password-Based Authentication
  179. Certificate-Based Authentication
  180. How Certificates Are Used
  181. SSL Protocol
  182. Form Signing
  183. Object Signing
  184. Contents of a Certificate
  185. A Typical Certificate
  186. How CA Certificates Are Used to Establish Trust
  187. CA Hierarchies
  188. Certificate Chains
  189. Verifying a Certificate Chain
  190. Managing Certificates
  191. Certificates and the LDAP Directory
  192. Renewing and Revoking Certificates
  193. Registration Authorities
  194. The SSL Protocol
  195. Ciphers Used with SSL
  196. Cipher Suites With RSA Key Exchange
  197. Fortezza Cipher Suites
  198. The SSL Handshake
  199. Server Authentication
  200. Man-in-the-Middle Attack
  201. client authentication
NETSCAPE MANAGEMENT SYSTEM 6.0 first page preview

NETSCAPE MANAGEMENT SYSTEM 6.0

Brand: Netscape | Category: Server
Table of contents
  1. Table Of Contents
  2. Table Of Contents
  3. Table Of Contents
  4. Table Of Contents
  5. Table Of Contents
  6. Table Of Contents
  7. Table Of Contents
  8. Table Of Contents
  9. Table Of Contents
  10. Table Of Contents
  11. Table Of Contents
  12. Table Of Contents
  13. Table Of Contents
  14. Table Of Contents
  15. Table Of Contents
  16. About This Guide
  17. Part I: Server Basics
  18. Part III: Configuring, Monitoring, and Performance Tuning
  19. Part V: Appendixes
  20. Part 1 Server Basics
  21. Enterprise Server Features
  22. Administering and Managing Enterprise Servers
  23. Content Engines
  24. Runtime Environments
  25. Enterprise Server Configuration
  26. Enterprise Server Configuration Files
  27. Dynamic Reconfiguration
  28. UNIX and Linux Platforms
  29. Virtual Server Configuration
  30. Server Manager
  31. Using the Resource Picker
  32. Wildcards Used in the Resource Picker
  33. Virtual Server Manager
  34. Accessing the Administration Server
  35. Windows NT Platforms
  36. Running Multiple Servers
  37. Removing a Server
  38. Migrating a Server
  39. Part 2 Using the Administration Server
  40. Editing Listen Socket Settings
  41. Changing the Superuser Settings
  42. Allowing Multiple Administrators
  43. Specifying Log File Options
  44. The Access Log File
  45. Using Cron-based Log Rotation (UNIX/Linux)
  46. Restricting Server Access
  47. managing users and groups
  48. Understanding Distinguished Names (DNs)
  49. Creating Users
  50. How to Create a New User Entry
  51. Managing Users
  52. Building Custom Search Queries
  53. Editing User Information
  54. Managing a User's Password
  55. Renaming Users
  56. Creating Groups
  57. Static Groups
  58. How Enterprise Server Implements Dynamic Groups
  59. Groups Can Be Static and Dynamic
  60. To Create a Dynamic Group
  61. Finding Group Entries
  62. Adding Group Members
  63. Adding Groups to the Group Members List
  64. Managing See Alsos
  65. Renaming Groups
  66. Managing Organizational Units
  67. Editing Organizational Unit Attributes
  68. Renaming Organizational Units
  69. Managing a Preferred Language List
  70. Using Certificates for Authentication
  71. Virtual Server Certificates
  72. Using password.conf
  73. Requesting and Installing a VeriSign Certificate
  74. Installing a VeriSign Certificate
  75. Required CA Information
  76. Requesting Other Server Certificates
  77. Installing Other Server Certificates
  78. Migrating Certificates When You Upgrade
  79. Using the Built-in Root Certificate Module
  80. Managing Certificates
  81. Installing and Managing CRLs and CKLs
  82. Managing CRLs and CKLs
  83. Setting Security Preferences
  84. SSL and TLS Protocols
  85. Enabling Security for Connection Groups
  86. Selecting a Server Certificate for a Connection Group
  87. Selecting Ciphers
  88. Configuring Security Globally
  89. SSLSessionTimeout
  90. Using External Encryption Modules
  91. Using pk12util
  92. Selecting the Certificate Name for a Connection Group
  93. FIPS-140 Standard
  94. Setting Client Security Requirements
  95. Requiring Client Authentication
  96. To Require Client Authentication
  97. Using the certmap.conf File
  98. Creating Custom Properties
  99. Setting Stronger Ciphers
  100. Considering Additional Security Issues
  101. Limit Physical Access
  102. Choosing Solid Passwords
  103. Changing Passwords or PINs
  104. Limiting Other Applications on the Server
  105. Knowing Your Server's Limits
  106. Specifying chroot for a Virtual Server Class
  107. managing server clusters
  108. Guidelines for Using Server Clusters
  109. Setting Up a Cluster
  110. Adding a Server to a Cluster
  111. Modifying Server Information
  112. Removing Servers from a Cluster
  113. Adding Variables
  114. Part 3 Configuring, Monitoring, and Performance Tuning
  115. starting and stopping the server
  116. Setting the Termination Timeout
  117. Restarting the Server (UNIX/Linux)
  118. Restarting With Inittab (UNIX/Linux)
  119. Stopping the Server Manually (UNIX/Linux)
  120. Using the Automatic Restart Utility (Windows NT)
  121. Tuning Your Server for Performance
  122. Editing the magnus.conf File
  123. Choosing MIME Types
  124. Restoring Configuration Settings
  125. Adding and Using Thread Pools
  126. Using Thread Pools
  127. What Is Access Control
  128. Setting Access Control for User-Group
  129. Default Authentication
  130. SSL Authentication
  131. Digest Authentication
  132. Other Authentication
  133. Using Access Control Files
  134. Configuring the ACL User Cache
  135. Setting Access Control
  136. Setting Access Control for a Server Instance
  137. Selecting Access Control Options
  138. Specifying the From Host
  139. Restricting Access to Programs
  140. Setting Access Rights
  141. Writing Customized Expressions
  142. Responding When Access is Denied
  143. Restricting Access to the Entire Server
  144. Restricting Access to a Directory (Path)
  145. Restricting Access to a URI (Path)
  146. Restricting Access Based on Time of Day
  147. Restricting Access Based on Security
  148. Working with Dynamic Access Control Files
  149. Enabling .htaccess from the User Interface
  150. Enabling .htaccess from magnus.conf
  151. Converting Existing .nsconfig Files to .htaccess Files
  152. Using htaccess-register
  153. Example of an .htaccess File
  154. deny
  155. AuthName
  156. order
  157. require
  158. Accessing Databases from Virtual Servers
  159. Specifying LDAP Databases in the User Interface
  160. About Log Files
  161. Viewing an Access Log File
  162. Viewing the Error Log File
  163. Archiving Log Files
  164. Internal-daemon Log Rotation
  165. Setting Log Preferences
  166. Easy Cookie Logging
  167. running the log analyzer
  168. Viewing Events (Windows NT)
  169. monitoring servers
  170. Monitoring the Server Using Statistics
  171. Using Statistics
  172. Quality of Service Example
  173. Setting Up Quality of Service
  174. Required Changes to obj.conf
  175. SNMP Basics
  176. The Enterprise Server MIB
  177. Setting Up SNMP
  178. Using a Proxy SNMP Agent (UNIX/Linux)
  179. Installing the Proxy SNMP Agent
  180. Starting the Proxy SNMP Agent
  181. Installing the SNMP Master Agent
  182. Enabling and Starting the SNMP Master Agent
  183. Manually Configuring the SNMP Master Agent
  184. Defining sysContact and sysLocation Variables
  185. Starting the SNMP Master Agent
  186. Starting the SNMP Master Agent Using the Administration Server
  187. Enabling the Subagent
  188. Chapter 11 Tuning Your Server for Performance
  189. Chapter 12 Using Search
  190. Configuring Text Search
  191. Controlling Search Access
  192. Eliminating Words from Search
  193. Turning Search On or Off
  194. Configuring the Search Parameters
  195. Configuring Your Search Pattern Files
  196. Configuring Files Manually
  197. The Configuration Files
  198. Indexing Your Documents
  199. About Collection Attributes
  200. Creating a New Collection
  201. Configuring a Collection
  202. Updating a Collection
  203. Maintaining a Collection
  204. Scheduling Regular Maintenance
  205. Removing Scheduled Collection Maintenance
  206. Search Home Page
  207. Guided Search
  208. Advanced Search
  209. The Search Results
  210. Sorting the Results
  211. Displaying Collection Contents
  212. Default Assumptions
  213. Search Rules
  214. Using Query Operators as Search Words
  215. Using Wildcards
  216. Non-alphanumeric Characters
  217. Dynamically Generated Headers and Footers
  218. Search Function Syntax
  219. URL Encodings
  220. Required Search Arguments
  221. Using Pattern Variables
  222. configuration file variables
  223. Macros and Generated Pattern Variables
  224. Part 4 Managing Virtual Servers and Services
  225. Virtual Servers Overview
  226. Multiple Server Instances
  227. Virtual Server Classes
  228. Virtual Servers in a Class
  229. Connection Groups
  230. Types of Virtual Servers
  231. URL-Host-Based Virtual Servers
  232. Virtual Server Selection for Request Processing
  233. Document Root
  234. Migrating Virtual Servers from a Previous Release
  235. Using Access Control with Virtual Servers
  236. Using the Virtual Server User Interface
  237. Using Variables
  238. Setting Up Virtual Servers
  239. Creating a Connection Group
  240. Creating a Virtual Server Class
  241. Specifying Services Associated with a Virtual Server Class
  242. Access Control
  243. Deploying Virtual Servers
  244. Example 2: Secure Server
  245. Example 3: Intranet Hosting
  246. Example 4: Mass Hosting
  247. Creating a Virtual Server
  248. Editing Virtual Server Settings
  249. Generating Reports for a Virtual Server
  250. Editing Using the Class Manager
  251. Configuring Virtual Server MIME Settings
  252. configuring virtual server quality of service settings
  253. Configuring Virtual Server Log Settings
  254. Configuring Virtual Server Java Web Application Settings
  255. Overview of Server-Side Programs
  256. Types of Server-Side Applications That Run on the Server
  257. Overview of Servlets and JavaServer Pages
  258. What the Server Needs to Run Servlets and JSPs
  259. Working with Web Applications
  260. Deploying and Editing Web Applications with the User Interface
  261. Deploying Servlets and JSPs Not in Web Applications
  262. Installing CGI Programs
  263. Overview of CGI
  264. Specifying a CGI Directory
  265. Specifying CGI as a File Type
  266. Installing Windows NT CGI Programs
  267. Specifying a Windows NT CGI Directory
  268. Specifying Windows NT CGI as a File Type
  269. Installing Shell CGI Programs for Windows NT
  270. Specifying a Shell CGI Directory (Windows NT)
  271. Specifying Shell CGI as a File Type (Windows NT)
  272. Using the Query Handler
  273. content management
  274. Setting the Primary Document Directory
  275. Setting Additional Document Directories
  276. Customizing User Public Information Directories (Unix/Linux)
  277. Restricting Content Publication
  278. Using Configuration Styles
  279. Setting the Document Preferences
  280. Specifying a Server Home Page
  281. Parsing the Accept Language Header
  282. Customizing Error Responses
  283. Changing the Character Set
  284. Setting the Document Footer
  285. Using htaccess
  286. Setting Cache Control Directives
  287. Using Stronger Ciphers
  288. Creating a Configuration Style
  289. Assigning a Configuration Style
  290. Listing Configuration Style Assignments
  291. Removing a Configuration Style
  292. Part 5 Appendixes
  293. Formatting LDIF Entries
  294. HttpServerAdmin (Virtual Server Administration)
  295. control Command
  296. Syntax
  297. Options
  298. Create Connection Group
  299. Create Virtual Server
  300. delete Command
  301. Delete Connection Group
  302. Delete Virtual Server
  303. Example
  304. About HyperText Transfer Protocol (HTTP)
  305. Requests
  306. Request Header
  307. Status Code
  308. Response Header
  309. Appendix C ACL File Syntax
  310. Authentication Methods
  311. Authorization Statements
  312. Hierarchy of Authorization Statements
  313. Attribute Expressions
  314. operators for expressions
  315. The Default ACL File
  316. Referencing ACL Files in obj.conf
  317. General Information
  318. Entering UTF-8 Data
  319. Using Other Language Settings
  320. Search Information
  321. Searching in Japanese
  322. auto
  323. none
  324. Overview
  325. Types of FrontPage Webs
  326. Domain Names and FrontPage Webs
  327. Downloading the Extensions
  328. Space Requirements
  329. Some Additional Considerations
  330. Installing FrontPage97 Server Extensions on UNIX /Linux Systems
  331. Installing FrontPage98 Server Extensions on UNIX /Linux Systems
  332. Installing FrontPage2000 Server Extensions on UNIX /Linux Systems
  333. further information
NETSCAPE MANAGEMENT SYSTEM 6.0 first page preview

NETSCAPE MANAGEMENT SYSTEM 6.0

Brand: Netscape | Category: Software
Table of contents
  1. Table Of Contents
  2. Table Of Contents
  3. Table Of Contents
  4. Table Of Contents
  5. Table Of Contents
  6. Table Of Contents
  7. Table Of Contents
  8. Table Of Contents
  9. Table Of Contents
  10. Table Of Contents
  11. Table Of Contents
  12. Table Of Contents
  13. Table Of Contents
  14. Table Of Contents
  15. Table Of Contents
  16. Table Of Contents
  17. Table Of Contents
  18. Table Of Contents
  19. Table Of Contents
  20. About This Guide
  21. What You Should Already Know
  22. Conventions Used in This Guide
  23. Where to Go for Related Information
  24. Part 1 Overview and Demo Installation
  25. Overview of Key Features
  26. Flexible end-entity registration services framework
  27. System Overview
  28. Public-Key Infrastructure
  29. CMS Subsystems or Managers
  30. Certificate Manager
  31. Registration Manager
  32. Data Recovery Manager
  33. Online Certificate Status Manager
  34. Basic System Configuration
  35. Plug-in Modules
  36. Policy Plug-in Modules
  37. Job Plug-In Modules
  38. Mapper and Publisher Plug-in Modules
  39. Event-Driven Notifications
  40. Command-Line Utilities
  41. Entry Points for Various Types of Users
  42. Agent Services Interface
  43. Registration Manager Agent Services
  44. Data Recovery Manager Agent Services
  45. Online Certificate Status Manager Agent Services Interface
  46. End-Entity Services Interface
  47. System Architecture
  48. JSS and the Java/JNI Layer
  49. Authentication and Policy Modules
  50. Security and Directory Protocols
  51. Some Enrollment Scenarios
  52. Extranet/E-Commerce: ExampleCorp
  53. Enrolling Existing Customers
  54. Enrolling New Customers
  55. Enrolling Extranet Users
  56. PIN Registration: Atlas Manufacturing
  57. VPN Client Enrollment and Revocation
  58. Router Enrollment and Revocation
  59. End Entities and Life-Cycle Management
  60. Access to Subsystems
  61. HTML Forms for End Users
  62. Netscape Personal Security Manager
  63. System Requirements
  64. Overview of the Default Demo
  65. Demo Passwords
  66. Installing the Default Demo
  67. Step 2. Run the Installation Wizard
  68. Step 3. Get the First User Certificate
  69. If You Need the First Agent Form Again
  70. Using the Default Demo
  71. Viewing Issued Certificates From the Agent Gateway
  72. Enrolling for a Certificate From the End-Entity Gateway
  73. Finding and Approving a Certificate Request
  74. Setting Your Browser to Use the Agent Certificate
  75. Create a Policy
  76. Use an LDAP Directory
  77. Step 1. Enable Directory-Based Authentication
  78. Step 2. Add a User to the Directory
  79. Step 3. Enroll with Directory-Based Authentication
  80. Publish Certificates to an LDAP Directory
  81. Configure the Publishing Destination
  82. Set Rules for Publishing Certificates
  83. Update the Publishing Directory
  84. Send Renewal Reminders
  85. Configuring a Mail Server for Certificate Management System
  86. Configuring Certificate Management System to Send Renewal Reminders
  87. Part 2 Planning and Installation
  88. Topology Decisions
  89. Certificate Manager and Registration Manager
  90. Certificate Manager and Data Recovery Manager
  91. Certificate Manager, Data Recovery Manager, and Registration Manager
  92. Cloned Certificate Manager
  93. CA's Distinguished Name
  94. CA Signing Certificate's Validity Period
  95. CAs and Certificate Extensions
  96. Cryptographic Token Decisions
  97. Publishing Decisions
  98. Publishing CRLs to the Online Certificate Status Manager
  99. Subsystem Certificate Decisions
  100. Certificate Manager Certificates
  101. Data Recovery Manager Certificate and Storage Key
  102. Authentication Decisions
  103. Information for UNIX Installation Script
  104. User/Group Directory Server
  105. Administration Server Information
  106. Certificate Management System Identifier
  107. Configuration Directory Settings
  108. Administration Server Port
  109. Token Logon or Single Sign-On Password
  110. Subsystems
  111. Network Configuration
  112. Key-Pair Information for CA Signing Certificate
  113. Validity Period for CA Signing Certificate
  114. CA Signing Certificate Request
  115. Subject Name for Registration Manager Signing Certificate
  116. Registration Manager Signing Certificate Issuer
  117. Subject Name for Transport Certificate
  118. Validity Period for Transport Certificate
  119. Transport Certificate Request
  120. Online Certificate Status Manager Configuration
  121. Online Certificate Status Manager Signing Certificate Request
  122. Online Certificate Status Manager Signing Certificate Issuer
  123. CA Signing Certificate
  124. SSL Server Key and Certificate
  125. Subject Name for SSL Server Certificate
  126. Extensions for SSL Server Certificate
  127. SSL Certificate Request
  128. Installation Overview
  129. Installation Stages
  130. Before You Begin the Installation
  131. Stage 1. Running the Installation Script
  132. Running the Installation Script on Windows NT
  133. Stage 2. Running the Installation Wizard
  134. Installing the Certificate Manager as a Root CA
  135. Installing the Certificate Manager as a Subordinate CA
  136. Installing a Standalone Registration Manager
  137. Installing a Standalone Data Recovery Manager
  138. Installing a Online Certificate Status Manager
  139. Stage 3. Enrolling for Administrator/Agent Certificate
  140. Agent Certificate for Other CMS Managers
  141. Stage 5. Creating Additional Instances or CA Clones
  142. Installing Multiple CMS Instances
  143. Cloning a Certificate Manager
  144. Step 1. Before You Begin
  145. Step 2. Create Instances for Clone CAs
  146. Installing Clone CA in a Different Server Group
  147. Installing Clone CA on a Separate Host
  148. Step 4. Copy Master CA's Certificate and Key Database
  149. Step 6. Configure the Clone CA
  150. Step 8. Establish Trust Between Master CA and Clone CAs
  151. Step B. Create a Privileged-User Entry for Clone CAs
  152. Step 9. Test Clone-Master Connection
  153. Step B. Approve the Request
  154. Step D. Revoke the Certificate
  155. Step 10. Use Master CA's Agent Certificate in Clone CAs
  156. Viewing Instance Information
  157. Changing the Name of an Instance
  158. Removing an Instance From a System
  159. Uninstalling Certificate Management System
  160. Uninstalling by Using the Windows NT Add/Remove Programs Utility
  161. Significance of password.conf File
  162. Required Start-up Information
  163. Starting From Netscape Console
  164. Starting From the Command Line
  165. Starting From the Windows NT Services Panel
  166. Stopping From Netscape Console
  167. Stopping From the Command Line
  168. Restarting From the CMS Window
  169. Restarting From the Command Line
  170. Attending to an Unresponsive Server
  171. Password-Quality Checker
  172. Part 3 Configuration
  173. Netscape Console
  174. Users and Groups Tab
  175. Netscape Administration Server
  176. Starting Administration Server
  177. Shutting Down Administration Server
  178. The CMS Window
  179. Tasks Tab
  180. Logging In to the CMS Window
  181. Effects of Installation Type on Configuration
  182. Duplicating Configuration From One Instance to Another
  183. Modifying the Configuration
  184. Guidelines for Editing the Configuration File
  185. Sample Configuration File
  186. Road Map to Configuring Subsystems
  187. Step 1. Check Which Subsystem is Installed in the Instance
  188. Step 5. Customize End-Entity and Agent Forms
  189. Step 8. Schedule Jobs
  190. Step 11. Set up Key Archival and Recovery
  191. Chapter 11 Setting Up Ports
  192. Remote Administration Port
  193. Agent Port
  194. Step 1. Specify the Port Number
  195. Step 2: Specify IP Addresses
  196. Internal Database
  197. Step 1. Identify the Directory Server Instance
  198. Step 2. Restrict Access to the Internal Database
  199. Privileged-User Types and Responsibilities
  200. Agents
  201. Agent's Certificate for SSL Client Authentication
  202. Revocation Status Checking of Agent Certificates
  203. Trusted Managers
  204. Subsystems That Can Function as Trusted Managers
  205. Connectors for Linking Trusted Managers
  206. Trusted Manager's Certificate for SSL Client Authentication
  207. Groups and Their Privileges
  208. Groups for Agents
  209. Group for Registration Manager Agents
  210. Group for Online Certificate Status Manager Agents
  211. Setting Up Privileged Users
  212. Setting Up Agents
  213. Setting up Agents Using the Manual Process
  214. Setting Up Trusted Managers
  215. Setting Up a Registration Manager as a Trusted Manager
  216. Setting Up a Certificate Manager as a Trusted Manager
  217. Changing Privileged-User Information
  218. Changing a Privileged User's Certificate
  219. Changing Members in a Group
  220. Deleting a Privileged User
  221. Keys and Certificates for the Main Subsystems
  222. Certificate Manager's Key Pairs and Certificates
  223. OCSP Signing Key Pair and Certificate
  224. CRL Signing Key Pair and Certificate
  225. SSL Server Key Pair and Certificate
  226. Registration Manager's Key Pairs and Certificates
  227. Data Recovery Manager's Key Pairs and Certificates
  228. Transport Key Pair and Certificate
  229. Online Certificate Status Manager's Key Pairs and Certificates
  230. Tokens for Storing CMS Keys and Certificates
  231. External Token
  232. Managing Tokens Used by the Subsystems
  233. Changing a Token's Password
  234. Hardware Cryptographic Accelerators
  235. Using the Wizard to Request a Certificate
  236. Step 1. Select the Operation
  237. Step 2. Choose the Certificate
  238. Step 3. Specify the Key-Pair Information
  239. Step 4. Specify the Subject Name for the Certificate
  240. Step 5. Specify the Validity Period
  241. Step 6. Specify Extensions
  242. Step 7. Copy the Certificate Signing Request
  243. Step 8. Check the Certificate Request Status
  244. Using the Wizard to Install a Certificate or Certificate Chain
  245. Data Formats for Installing Certificates and Certificate Chains
  246. Step 2. Select the Certificate or Certificate Chain
  247. Step 3. Specify the Location of the Certificate
  248. Step 4. View the Certificate or Certificate Chain
  249. Step 6. Verify the Certificate Status
  250. Step 1. Get the Required SSL Server Certificates
  251. Getting an SSL Client Certificate for a Subsystem
  252. Setting Up Cipher Preferences for SSL Communications
  253. SSL Ciphers Supported in Certificate Management System
  254. Configuring the Server to Use Specific Ciphers
  255. Getting New Certificates for the Subsystems
  256. Step 1. Plan for the New Certificate
  257. Step 2. Request the New Certificate
  258. Step 4. Deploy the New Certificate
  259. Deploying Registration Manager's Signing Certificate
  260. Deploying Data Recovery Manager's Transport Certificate
  261. Deploying a Subsystem's SSL Server Certificate
  262. Renewing Certificates for the Subsystems
  263. Step 1. Plan for Certificate Renewal
  264. Step 2. Renew the Existing Certificate
  265. Step 3. Install the Renewed Certificate
  266. Deploying Certificate Manager's Renewed CA Signing Certificate
  267. Deploying Data Recovery Manager's Renewed Transport Certificate
  268. Deploying a Subsystem's Renewed SSL Server Certificate
  269. Step 5. Restart the Server
  270. Viewing the Certificate Database Content
  271. Changing the Trust Settings of a CA Certificate
  272. Installing a New CA Certificate in the Certificate Database
  273. Introduction to Authentication
  274. Privileged-User Authentication
  275. Authentication of Agents
  276. End-Entity Authentication
  277. Authentication of End Users During Certificate Revocation
  278. Configuring Authentication for End-User Enrollment
  279. Step 2. Set Up the Directory for PIN-Based Enrollment
  280. Step B. Update the Directory
  281. Step C. Prepare the Input File
  282. Step E. Check the Output File
  283. Step 4: Add an Authentication Instance
  284. Step 5. Set Up the Enrollment Interface
  285. Step B. Customize the Form
  286. Step D. Remove Unwanted Enrollment Options
  287. Step 6. Enable End-Entity Interaction
  288. Enabling End-Entity Interaction with a Registration Manager
  289. Step 7. Turn on Automated Notification
  290. Step 9. Deliver PINs to End Users
  291. Managing Authentication Instances
  292. Modifying an Authentication Instance
  293. Managing Authentication Plug-in Modules
  294. Deleting an Authentication Module
  295. Automated Notifications
  296. Notifications of Certificate Issuance to End Entities
  297. Notification of New Request in Queue
  298. Customizing Notification Messages
  299. Customizing Message Templates
  300. Tokens Available in Message Templates
  301. Tokens for Rejection Notifications to End Entities
  302. Tokens for Request In Queue Notification Messages
  303. Step 2. Turn On Certificate-Issuance Notification
  304. Step 3. Turn on Request in Queue Notification
  305. Step 4. Verify Mail Server Settings
  306. Step 5. Test Your Configuration
  307. Configuring a Subsystem to Run Automated Jobs
  308. Step 2. Modify Existing Jobs
  309. Step 3. Delete Unwanted Jobs
  310. Step 5. Schedule the Frequency
  311. Step 7. Test Your Configuration
  312. Registering a Job Module
  313. Deleting a Job Module
  314. Introduction to Policy
  315. What Is Policy
  316. Policy Rules
  317. Using Predicates in Policy Rules
  318. Attributes for Predicates
  319. Policy Processor
  320. Configuring Policy Rules for a Subsystem
  321. Step 2. Modify Existing Policy Rules
  322. Step 3. Delete Unwanted Policy Rules
  323. Step 5. Reorder Policy Rules
  324. Step 6. Restart the Server
  325. Using JavaScript for Policies
  326. Deleting a Policy Module
  327. Publishing of Certificates to a Directory
  328. Timing of Directory Updates
  329. Directory Update Process
  330. Directory Synchronization
  331. What's a CRL
  332. Reasons for Revoking a Certificate
  333. Revocation Checking by Netscape Clients
  334. Publishing of CRLs to an LDAP Directory
  335. CRL Issuing Points
  336. Step 2. Set Up the Directory for Publishing
  337. Step C. Identify an Entry That Has Write Access
  338. Step E. Specify the Directory Authentication Method
  339. Step F. Modify the Certificate Mapping File
  340. Step G. Restart Directory Server
  341. Step B. Add Mappers, Publishers, and Publishing Rules
  342. Step 4. Configure the Certificate Manager to Publish CRLs
  343. Step A. Specify CRL Details
  344. Step B. Set the CRL Extensions
  345. Step C. Create a Mapper for the CRL
  346. Step D. Create a Publisher for the CRL
  347. Step E. Create a Publishing Rule for the CRL
  348. Step 5. Identify the Publishing Directory
  349. Step 6. Test Certificate and CRL Publishing
  350. Step A. Decide a Directory Entry for Requesting a Certificate
  351. Step D. Download the Certificate to the Browser
  352. Step F. Revoke the Certificate
  353. Step G. Check the Directory for the CRL
  354. Manually Updating Certificates in the Directory
  355. Manually Updating the CRL in the Directory
  356. Configuring Certificate Manager to Publish to Files
  357. Step 2. Configure the Certificate Manager
  358. Step B. Create Publishing Rules for Certificates
  359. Step C. Create a Publishing Rule for CRLs
  360. Step D. Specify CRL Details
  361. Step E. Set the CRL Extensions
  362. Step F. Make Sure Publishing is Enabled
  363. Step D. Check the File for the Certificate
  364. Step E. Revoke the Certificate
  365. Step F. Check the File for the CRL
  366. Managing Mapper and Publisher Plug-in Modules
  367. Deleting a Mapper or Publisher Module
  368. What's an OCSP-Compliant PKI Setup
  369. How to Get an OCSP Responder
  370. How Online Certificate Status Manager Works
  371. How to Get OCSP-Compliant Clients
  372. Setting Up a Certificate Manager with OCSP Service
  373. Step 2. Install OCSP-Compliant Client
  374. Setting Up Personal Security Manager for OCSP-Based Certificate Validation
  375. Step 3. Enable Certificate Manager's HTTP Port
  376. Step 5. Restart the Certificate Manager
  377. Step A. Turn On Revocation Checking in the Browser
  378. Step C. Approve the Request
  379. Step E. Make Sure the CA is Trusted by the Browser
  380. Step H. Revoke the Certificate
  381. Step J. Check the Certificate Manager's OCSP Service Status Again
  382. Step 2. Install an OCSP-Compliant Client
  383. Step A. Specify CRL Format and Publishing Interval
  384. Step C. Create a Publisher for the CRL
  385. Step D. Create a Publishing Rule for the CRL
  386. Step E. Make Sure Publishing is Enabled
  387. Step 5. Configure Certificate Manager for Required Extension Policies
  388. Step 6. Configure the Online Certificate Status Manager
  389. Step 7. Restart the Certificate Manager
  390. Step 8. Restart the Online Certificate Status Manager
  391. Step 10. Test Your OCSP Responder Setup
  392. Step B. Request a Certificate
  393. Step F. Verify the Certificate in the Browser
  394. Step I. Verify the Certificate in the Browser
  395. PKI Setup for Key Archival and Recovery
  396. Clients That Can Generate Dual Key Pairs
  397. Forms for Users and Key Recovery Agents
  398. Where the Keys are Stored
  399. How Key Archival Works
  400. Key Recovery Process
  401. Interface for the Key Recovery Process
  402. Local Versus Remote Key Recovery Authorization
  403. How Agent-Initiated Key Recovery Works
  404. Key Recovery Agent Scheme
  405. Changing Key Recovery Agents' Passwords
  406. Configuring Key Archival and Recovery Process
  407. Step A. Deploy Clients That Can Generate Dual Key Pairs
  408. Step C. Customize the Certificate Enrollment Form
  409. Step D. Configure Key Archival Policies
  410. Step 2. Set Up the Key Recovery Process
  411. Step B. Facilitate the Key Recovery Agents to Change the Passwords
  412. Step 3. Test Your Key Archival and Recovery Setup
  413. Step B. Verify the Key
  414. Step D. Restore the Key in the Browser's Database
  415. Introduction to Logs
  416. Logs Maintained by the Server
  417. Services That Are Logged
  418. Log Levels (Message Categories)
  419. Log File Locations
  420. Log File Naming Conventions
  421. Rotation of Log Files
  422. Location of Rotated Log Files
  423. Configuring CMS Logs
  424. Step 3. Delete Unwanted Listeners
  425. Step 4. Create New Listeners
  426. Monitoring CMS Logs
  427. Monitoring System Logs
  428. Monitoring Error Logs
  429. Monitoring Audit Logs
  430. Using System Tools for Monitoring the Server (Windows NT Only)
  431. Logging to Windows NT Event Log
  432. Avoiding Event Log From Getting Filled
  433. Archiving of Rotated Log Files
  434. Signing Log Files
  435. Managing Log Modules
  436. Deleting a Log Module
  437. Part 4 Issuing and Managing Certificates
  438. Certificate Issuance to Servers
  439. How the Manual Server Enrollment Process Works
  440. Getting Server SSL Certificates for Netscape Servers
  441. Step 1. Generate the Server Certificate Request
  442. Step 3. Install Your Server's SSL Certificate
  443. Step 5. Verify Your Server's SSL and CA Certificates
  444. Renewal of Server Certificates
  445. CEP Enrollment
  446. Setting up CEP Enrollment Manually
  447. Step 1. Set up the Directory for Publishing Certificates and CRLs
  448. Step 2. Configure the Certificate Manager for Publishing Certificates and CRLs
  449. Step 3. Set Up Automated Enrollment
  450. Step 4. Set Up Multiple CEP Services
  451. Certificate Issuance to Routers or VPN Clients
  452. Step 2. Generate the Key Pair for the Router
  453. Step 3. Request the CA's Certificate
  454. Example
  455. Part 5 Appendix
  456. Data Formats
Netscape categories
Server
Software
Gateway
More Netscape categories
Manuals database logo
manualsdatabase
Your AI-powered manual search engine