Managing Servers with Netscape Console: Index

Complete Contents
Introduction
Chapter 1 Introducing Netscape Console
Chapter 2 The Netscape Server Family Setup Program
Chapter 3 Using Netscape Console
Chapter 4 User and Group Administration
Chapter 5 Using SSL
Chapter 6 Delegating Server Administration
Chapter 7 Using SNMP to Monitor Services
Chapter 8 Administration Server Basics
Chapter 9 Administration Server Configuration
Appendix A Distinguished Name Attributes and Syntax
Appendix B Administration Server Command Line Tools
Appendix C FORTEZZA
Appendix D Introduction to Public-Key Cryptography
Appendix E Introduction to SSL

Contents

access control information
  See ACI
access log
  defined 129
  viewing 130
access permission
  for a server 100
  for a task 103
access settings 135
ACI
  name 107
  rule 102, 104
ACI Editor
  settings and options 105
  using 104
activate SSL 78
add
  administration domain 28
  pre-4.0 server 32
  right to add 106
administration domain
  adding 28
  changing user directory settings 143
  defined 92
  modifying 29
  overview 26
administration privileges
  comparison 93
Administration Server
  access settings 135
  activating SSL 137
  defined 16
  delegated administration 92
  directory settings 139
  enabling SSL 137
  encryptions settings 137
  installation of 20
  logging options 129
  network settings 133
  single instance per server root 35
  SNMP master agent 110
  starting 127
  stopping 129
  user directory settings 141
Administration Server Administrator
  privileges 93
administrative privileges
  defined 92
  overview 91
algorithm 187
alias 49, 74
authentication
  certificate 195, 197
  client 194
  form signing 203
  password-based 195
  server 194
  user 142

bind rules 102

CA 208
  certificate 200
  defined 193
  FORTEZZA card 182
  hierarchies 208
  root CA 209
CAW 181
certificate 89
  and LDAP Directory 216
  backing up 74
  CA certificate 200
  certificate-based authentication 195
  chains 209
  client 83-89, 199
  contents 204
  example of 205
  how certificates are used 197
  issuing 215
  object-signing 200
  renewing or revoking 217
  S/MIME 200
  server 200
  server certificate 67
  server certificate chain 67
  server certificate request 68-73
  trusted CA certificate 67
  types of 199
  verifying a certificate chain 214
Certificate Authority 66
  See CA.
  trusted 208
  trusted CA certificate 67
Certificate Authority Workstation 181
certificate-based authentication
  how it works 197
certificate database 63, 66
certificate group 54
Certificate Revocation List 183
  See CRL
Certificate Setup Wizard 66
certmap.conf file 83-89
changing user directory settings 144
ciphers, SSL 64-65
  choosing 64
  defined 187
  preferences 80
CKL 81, 183
client
  authentication 194
  SSL certificates 83, 199
clone a server 33
community string 120
Compare 106
Compromised Key List 183
Configuration Administrator
  Configuration Administrators group 98
  defined 92
  privileges 93
  setting access permissions 100
configuration directory 13
  defined 139
  specifying 139
configuration directory, merging 36
construct LDAP URL 53
create
  administration domain 29
  certificate group 54
  dynamic group 52
  organizational unit 49
  server instance 33
  static group 50
  user 56
CRL
  defined 183
  managing 81
crypto card
  FORTEZZA 181
  how certified 182
Custom Installation mode 21
customize
  display fonts 38
  display preferences 38
  view of Netscape Console 38

delegated administration 92-97
Delete
  access control permission 106
Digital Signatures 62, 191
Directory Server 13-15
  authentication against 92
  configuration subtree 13
  installing 20
  interacting with 43-47
  LDAP URL 53
  mapping client certificate to 83-89
  merging two configuration directories 36
  user directory failover support 142
  user subtree 13
Directory Server Gateway 135
directory settings 139
display preferences 38
  fonts 38
  profile 41
distinguished name
  See DN.
DN
  defined 204
  overview 44
Domain Administrator
  defined 92
  privileges 93
dynamic group 52

edit
  password 59
  user or group directory entry 59
email, signed and encrypted 201
encryption
  defined 187
  external devices 62
  PKCS # 11 module 62
  public-key 189
  SSL overview 62
  symmetric-key 188
encryption settings 137
end user
  administration page 46
End-user page 135
error log
  defined 129
  viewing 131
Express Installation mode 21
external encryption devices 62
external token 63

failover support, directory 142
fonts, customizing 38
form signing 203
FORTEZZA
  and PKCS #11 module 62
  choosing 69
  defined 181
  enabling 183
  FORTEZZA card 63
  how it works 181

group 50-56
  certificate group 54
  dynamic group 52
  static group 50

install 20
  Install.htm 20
  installation modes 20
  Netscape Console 22
  SSL certificate 67, 74
internal token 63
IP address, changing 162

JAR file 169

key 187
key-pair 66
Certificate Setup Wizard 66
overview 63
key recovery 216

language, preferred 58
LDAP URL 53
license, tracking 58
Litronic cryptographic module 62
logging in to Netscape Console 25
logging options 129

master agent 110
members, adding to static group 51
merge configuration 36
Merge Configuration Directory utility 36
migrate a server 33

navigation tree
  customizing 38
  overview 26
Netscape Console 17
  installing by itself 22
  logging in 25
network settings 133

object signing 204
organizational unit
creating 49
defined 48
overview 26

password
  editing 59
  for Trust Database 81
password-based authentication 195
permission
  permissions used in ACIs 101
permission, access 100
PKCS #11 module 62
  JAR file 169
  setting up 63
pre-4.0 server 31-34
  adding 31
preferences
  display 38
preferred language 58
private key 189
public key
  defined 189
  infrastructure 214
  management 216
public-key
  cryptography 186
Public-Key Encryption 62

Read
  access control permission 106
recover a key 216
Registration Authority 218
remove
  server instance 35
  user, group, or organizational unit 59
renew certificate 217
request for server certificate 68-73
resources
  access to 98
  defined 26
revoke a certificate 217
rights, access control 106
rule, ACI 104
rules 102

S/MIME certificate 200
search
  changing the search directory 46
  for a user or group 44
  Search access control permission 106
Secure Sockets Layer protocol
  See SSL
self-signed certificate 209
Selfwrite 106
server
  authentication 194
  certificate 69
  changing user directory settings 146
  task 103
server, Netscape
  certificate 68-73
  cloning 33
  creating new instance of 33
  installing 20
  migrating to 4.0 33
  opening 28
  remove instance 35
  uninstalling 36
Server Administrator 92
  privileges 93
server certificate 67, 200
server certificate chain 74
server certificate request 68-73
server group 26, 92, 144
  defined 16
  providing access to 92
server instance
  creating 35
  removing 35
Setup Program 19
single sign-on 202
SNMP
  community string 120
  defined 110-111
  enabling master agent 117
  enabling subagent 122
  how it works 111-113
  master agent 110
  native daemon 116
  proxy agent 115
  setting up 113-114
  subagent 110
  trap destinations 122
SSL client 83-89
SSL protocol 62-66
  ciphers 75
  client certificates 199
  external token 63
  internal token 63
  options 66
  server certificate chain 74
  slots and tokens 63
  token 75
static group
  creating 50
  defined 50
subagent 110
subagent, SNMP 122

target 107
  ACI 101
task 103
TCP/IP 186
test LDAP URL 53
token 69, 75
token, for SSL 68
tokens, SSL protocol 63
topology, Netscape 92
track user licenses 58
trap, SNMP 122
Trust Database 69
  password 81
trusted CA
  defined 208
Typical Installation mode 21

uninstall a Netscape server 36
user
  create 56
  preferred language 58
user directory 13
  defined 141
  failover support 142
  settings 141

view, customized 38

Write
access control permission 106