The Web Console is a web-based user interface that allows you to search the Registry and to publish content to the Registry and Repository. This section describes the preliminary steps to follow before you can perform these operations.
To start the Web Console, type the following URL into a web browser:
http://hostname:port/soar/
Here is an example:
http://localhost:6060/soar/
If the Registry is installed on your system, the hostname is localhost. If the Registry is not installed on your system, use the name of the system where the Registry is installed. The port value is usually 6060 unless there is a port conflict.
The Web Console has the following main sections:
Top banner, where you can log in, log out, reset the locale, end the current session, set versioning for registry content, and set the content language
Menu area on the left side of the screen
Registry Objects area to the right of the menu area, which displays found objects
Detail area below the Registry Objects area, which displays the details for any found object
You can change the default language for the display of two kinds of information:
Web Console labels and messages
Registry content
The Web Console’s labels and messages can be displayed in the languages listed in Table 1–1.
Table 1–1 Languages Supported by the Web Console
Language |
Code |
---|---|
Simplified Chinese (China) |
zh_CN |
Traditional Chinese (Taiwan) |
zh_TW |
English (United States) |
en |
German |
de |
Japanese |
ja |
Korean |
ko |
Spanish |
es |
Add the language to your web browser language preferences by following the instructions for the web browser.
For most browsers, you can find the language settings in the General area of the Internet Options, Options, or Preferences dialog box.
Make the language your preferred language by placing it first in the list of languages.
Click the Reset Locale button.
The labels appear in the appropriate language.
You can publish content to the registry in any of the languages that appear in the Content Language drop-down list in the top banner area. The default is the language setting for your web browser.
To change the language from the default, choose the language from the Content Language drop-down list.
By default, versioning of registry objects is turned off. All objects have the version number 1.1. If you want an object to obtain a new version number when you modify it, select the Versioning ON checkbox.
You can browse the public content of the Registry without logging in to the Registry. However, to gain read access to private objects and write access to public objects, you must have a user account with the Registry. After you create a user account, you can perform secure operations such as publishing, modifying, and removing objects.
Creating a user account involves the following general steps:
Fill out a new user's details form.
Associate a set of credentials with the user account. You can obtain these credentials in either of two ways:
The Registry can generate credentials for you. This is the simpler way to obtain credentials.
If you have a certificate issued by a third-party certificate authority, you can use this certificate to obtain credentials. Before you can use the certificate, an administrator must install the third-party root certificates into the Application Server domain for the Registry. See To Add Root Certificates to the Trusted Certificates in the Registry Domain in Service Registry 3 2005Q4 Administration Guide for details.
To create a user account, perform the following tasks:
Either Obtaining a Registry-Generated Certificate or Using a Third-Party Certificate
Either Loading the Certificate into the Mozilla or Firefox Web Browser or Loading the Certificate into the Internet Explorer Web Browser
Click Create User Account in the left menu area.
Click the Start Registration Wizard button.
Read the instructions under Step 1: Requirements and click Next.
Fill out the New User's Details form.
You must provide a first name and last name for the user. All other fields are optional.
After you log in, the first and last names appear after the Current User label in the top banner area of the Web Console.
Click Next.
The User Authentication Details page appears.
On the User Authentication Details page, select one of the following radio buttons:
Select Generate Key Pair and Download PKCS12 KeyStore (the default) if you want the Registry to create a certificate for you. See Obtaining a Registry-Generated Certificate for details about this task.
Select Upload X509 Certificate (DER) if you want to use an existing third-party certificate. See Using a Third-Party Certificate for details about this task.
Follow these steps if you selected the Generate Key Pair and Download PKCS12 KeyStore radio button on the User Authentication Details page.
On the User Authentication Details page, type a user name in the Alias text field.
Type a password in the Password and Password (repeat) text fields.
Type values in the text fields, if the fields are not already filled in.
The text fields are as follows:
Organizational Unit
Organization
City
State or Province
Country
The Name field contains the name that you specified as the Last Name in the New User's Details form. If you specified a City, State or Province, or Country in the New User's Details form, the text fields contain those values.
All fields are required.
Click Next.
A page labeled Step 4: Load Key to Web browser appears, with the message “New user successfully registered.”
Click Download.
In the dialog box, choose the option that allows you to save the generated certificate to disk. In the file chooser dialog, choose a directory and name for the file.
The file must have the suffix .p12.
The default action is to save the certificate in your home directory, in a file that is named generated-key.p12.
Next, you must import the generated certificate into your web browser. See Loading the Certificate into the Mozilla or Firefox Web Browser or Loading the Certificate into the Internet Explorer Web Browser for details.
Follow these steps if you selected the Upload X509 Certificate (DER) radio button on the User Authentication Details page. These steps place the certificate in the server keystore for the Registry and load the certificate into the web browser.
The third-party certificate must be in X.509 format. Typically, the certificate is in a file with the suffix .cer.
On the User Authentication Details page, click the Choose Certificate File button.
In the File Upload dialog box, click the Browse button to locate the file to upload, then click Upload File.
Click OK.
The name of the file appears on the User Authentication Details page next to the Choose Certificate File button.
Click Next.
On the Step 4: Load Key to Web browser page, follow the instructions to import the certificate into your web browser if it is not already there.
See Loading the Certificate into the Mozilla or Firefox Web Browser or Loading the Certificate into the Internet Explorer Web Browser for details.
Choose Preferences from the Edit menu.
Click the Privacy & Security category on the sidebar to expand the options.
Click Certificates.
Click the Manage Certificates button in the right main panel.
The Your Certificates tab appears.
Click the Import button.
In the File Name to Restore file chooser dialog, select the .p12 certificate file, then click Open.
In the Prompt dialog, type an account password for the Master Password for the Software Security Device.
This password is specific to your browser account and is assigned by the browser profile owner. A common convention is to use the same password as the login account on the client machine.
In the Password Entry dialog, type the certificate password.
This password is used to protect the client certificate. If you are using a registry-generated certificate, type the password that you specified on the User Authentication Details page.
An Alert dialog with the message: “Successfully restored your security certificate(s) and private key(s)” appears.
Click OK.
Close the Certificate Manager and Preferences dialogs.
After you import the certificate, you are ready to log in to the registry. See Logging In to the Registry for details.
Choose Internet Options from the Tools menu.
Click the Content tab.
Click Certificates.
Click Import to open the Certificate Import Wizard.
In the Certificate Import Wizard, click Next.
On the File to Import page, click Browse and locate the .p12 file, then click Next.
On the Password page, do the following:
On the Certificate Store page, choose the default, Place All Certificates in the Following Store (Personal), then click Next.
Click Finish.
Click OK in the information dialog that appears.
The new certificate, with the first and last name you specified, appears in the Certificates window.
Click Close in the Certificates window.
Click OK in the Internet Options window.
After you import the certificate, you are ready to log in to the registry. See Logging In to the Registry for details.
After you import a certificate to the web browser, you are ready to log in.
On the Step 4: Load Key to Web browser page, click the Finish button.
In the top banner area of the Web Console, click the Login button.
Click OK in the dialog boxes to verify the certificate.
After you log in, an “Authentication successful.” message appears in the top banner area.
After you log in to the Registry, authentication happens transparently whenever you try to add, delete, or modify a Registry object, because any write request triggers authentication based on the client certificate loaded into your web browser.
After authentication is completed, access to the Registry is over https .
When your session expires, you are no longer authenticated by the Registry. A subsequent write request prompts the Web Console to re-authenticate you.
If authentication fails, stop and restart your web browser and try again.