Single Sign-On Deployment Guide
[Next] [Last]
Planning and Deploying a Single Sign-On Solution
- Introduction to Single Sign-On
- Client Authentication and Single Sign-On
- Basic Authentication
- Strong Authentication
- Netscape Products That Support Single Sign-On
- Planning a Single Sign-On Solution
- Planning Your LDAP Directory
- Certificates, DNs, and LDAP Lookups
- LDAP Tree Hierarchy and Entry Attributes
- Integration Issues
- Establishing the CA Hierarchy
- Planning the CA Hierarchy
- Verifying Certificate Chains
- Determining Which CA Certificates to Install
- Examples
- Mapping DNs to an LDAP Entry
- Planning Access Control
- Establishing Security Policies
- Security Policy Architecture
- Client Software Policies
- Dealing with Export Restrictions
- Setting Up Netscape Servers for Single Sign-On
- Setting Up the Directory Server
- Install a Directory Server
- Add an Entry for the Certificate Authority
- Set Up an Entry with Write Access
- Add Entries for the Users
- Get a Server Certificate
- Enable Encryption
- Setting Up the Certificate Server
- Install a Certificate Server
- Configure the Certificate Server to Work with the Directory Server
- Specify How the Certificate Server Matches DNs to Directory Entries
- Setting Up the Enterprise Server
- Install an Enterprise Server
- Generate a Key Pair and Request a Server Certificate
- Set Client Authentication and Encryption Preferences
- Restrict Access
- Configure Directory Service
- Set Up the certmap.conf File
- Setting Up the Messaging Server
- Setting Up Netscape Clients for Single Sign-On
- Using Mission Control to Configure Communicator for Single Sign-On
- Configuring the Certificate Database for Communicator
- Configuring SSL and Password Settings for Communicator
- Configuring User Certificate Setting for Communicator
- Using the Administration Toolkit to Configure Navigator 3.x
- Configuring the Certificate Database for Navigator 3.x
- Configuring SSL and Password Settings for Navigator 3.x
- Issuing Client Certificates
- Using the Verification Gateway Interface
- Guiding Users Through the Request Process
- Testing Your Setup Before Full Deployment
Appendix A Netscape's Use of Public-Key Cryptography
- Public-Private Key Pairs
- Certificates
- Types of Certificates
- Keeping Track of Certificates
- Digital Signatures
- Getting a Certificate
- Authenticating a User's Identity
Appendix B Single Sign-On and Future Versions of SuiteSpot Servers
- Proxy Server
- Directory Server
- Catalog/Compass Server
- Calendar Server
References
- Public-Key Cryptography
- SuiteSpot Servers
- Certificates
- Verification Gateway Interface (VGI)
- Mission Control
- Third-Party Solutions
- Feedback and Help
[Next] [Last]
Last Updated: 10/20/97 14:15:37
Copyright © 1997
Netscape Communications Corporation
Any sample code included above is provided for your use on an "AS IS" basis, under the Netscape License Agreement - Terms of Use