Sun Java System Web Server 6.1 SP9 Administrator's Guide

Selecting the Certificate Name for a Listen Socket

To select the certificate name for the listen socket, perform the following steps:


Note –

If Security is not enabled on the listen socket, certificate information is not listed. To select a certificate name for a listen socket, ensure that security is enabled. For more information, see Enabling Security for Listen Sockets.


ProcedureTo select the certificate name for the listen socket

  1. Access either the Administration Server or the Server Manager and choose the Preferences tab.

    For the Server Manager you must first select the server instance from the drop-down list.

  2. Select the Preferences tab.

  3. Click the Edit Listen Sockets link.

    The Edit Listen Sockets page appears.

  4. Click the Listen Socket Id link corresponding to the listen socket that you want to associate with a certificate.

    The Edit Listen Socket page appears.

  5. Select a server certificate from the drop-down Server Certificate Name list for the listen socket.

    The list contains all internal and external certificates installed.


    Note –

    If no server certificates are installed, a warning to this effect is displayed in place of the Server Certificate Name drop-down list.


  6. Click OK

  7. From the Server Manager, click Apply, and then Restart for changes to take effect.

    You could also tell the server to start with that server certificate by manually editing the server.xml file. Change the servercertnickname attribute in the SSLPARAMS to:

    $TOKENNAME:Server-Cert

    To find what value to use for $TOKENNAME, go to the server’s Security tab and select the Manage Certificates link. When you log in to the external module where Server-Cert is stored, its certificates are displayed in the list in the $TOKENNAME:$NICKNAME form.


    Note –

    If you have not created a trust database, it is created for you when you request or install a certificate for an external PKCS#11 module. The default database that is created has no password and cannot be accessed. Although your external module works, you cannot request and install server certificates. If a default database has been created without a password, use the Security Tab Create Database page to set a password.