Index Next |
iPlanet Web Server: FastTrack Edition Administrator's Guide |
Contents
About This GuideWhat's In This Guide?
How This Guide Is Organized
Server Basics
Conventions Used In This Guide
Using the Administration Server
Configuring and Monitoring
Using Programs and Objects
Managing Content and Access
Appendixes
Using the iPlanet Web Server Documentation
Further Reading
Contacting Technical Support
Part 1 Server BasicsChapter 1 Introduction to iPlanet Web Server
iPlanet Web Server
Chapter 2 Administering iPlanet Web Servers
iPlanet Web Server Features
iPlanet Web Server Architecture
Administering and Managing iPlanet Web Servers
Content Engines
How iPlanet Web Server is Configured
Server Extensions
Runtime Environments
Application Services
iPlanet Web Server Component Options
Administration Server
iPlanet Web Server Configuration Files
Single-Server Configuration
All Platforms
Multiple-Server Configuration
Unix and Linux Platforms
Server Manager
Accessing the Server Manager
Netscape Console
Using the Resource Picker
Wildcards Used in the Resource Picker
Sending Error Information
Details on Data Collected by the Quality Feedback Agent
Using the Quality Feedback Agent
Editing master.ini
Editing magnus.conf
Accessing the Administration Server
Unix/Linux Platforms
Adding a Server: Running Multiple Servers
Windows NT Platforms
Hardware Virtual Servers
Installing Multiple Instances of the Server
Configuring Multiple Hardware Virtual Servers on the Same IP Address with Different Ports
Multiple Server Instances
Removing a Server
Migrating a Server From a Previous Version
Part 2 Using the Administration ServerChapter 3 Setting Administration Preferences
Shutting Down the Administration Server
Chapter 4 Managing Users and Groups
Changing Network Settings
Changing the User Account and Password
Changing the Superuser Settings
Changing the Port Number
Enabling Distributed Administration
Configuring Secure Sockets Layer (SSL)
Activating SSL
Specifying Log File Options
Setting Encryption Preferences
Setting Stronger Ciphers
Viewing the Access Log File
Configuring Directory Services
Viewing the Error Log File
Archiving Log Files
Using Cron Controls (Unix/Linux)
Restricting Server Access
About Users and Groups
Chapter 5 Working with Server Security
Creating Users
Guidelines for Creating User Entries
Managing Users
How to Create a New User Entry
Directory Server User Entries
Finding User Information
Creating Groups
Building Custom Search Queries
Editing User Information
Search Attribute Options
Search Type Options
Managing a User's Password
Managing User Licenses
Renaming Users
Removing Users
Static Groups
Managing Groups
Guidelines for Creating Static Groups
To Create a Static Group
Finding Group Entries
Creating Organizational Units
The "Find all groups whose" Field
Editing Group Attributes
Adding Group Members
Adding Groups to the Group Members List
Removing Entries from the Group Members List
Managing Owners
Managing See Alsos
Removing Groups
Renaming Groups
Managing Organizational Units
Finding Organizational Units
Managing a Preferred Language List
The "Find all units whose" Field
Editing Organizational Unit Attributes
Renaming Organizational Units
Deleting Organizational Units
About iPlanet Web Server Security
Encryption
Creating a New Server Instance
SSL Protocol
Certificates
FORTEZZA Encryption
FIPS-140 Compliance
Client and Server Authentication
Configuring iPlanet Web Server for SSL
How iPlanet Web Server Uses Certificates to Authenticate Users
Creating a Certificate Trust Database
Requesting a Certificate
Required CA Information
Installing and Managing Certificates and Certificate Lists
Installing Certificates
Using Secure Sockets Layer (SSL)
Managing Certificates
Managing Certificate Lists
Obtaining a CRL or CKL
Adding a CRL or CKL to the Trust Database
Managing CRLs
Activating SSL
Using Client Certificates
Specifying Ciphers
Setting Security (SSL) Preferences
Adding a PKCS#11Module
Guidelines for Installing a PKCS#11 Module
Using SSL Configuration File Directives
To Import a PKCS#11 Module
Adding a FORTEZZA PKCS#11 Module
Security
SSL2
SSL3
Ciphers
SSL3Ciphers
SSL3SessionTimeout
SSLCacheEntries
SSLClientAuth
SSLSessionTimeout
Mapping Client Certificates to LDAP
Changing the Trust Database/Key Pair File Password
Using the certmap.conf File
Creating Custom Properties
Example Mappings
Migrating Enterprise Server 3.x Certificates
Additional Server Security Considerations
Limit Physical Access
Limit Administration Access
Choose Good Passwords
Guidelines for Creating Hard-to-Crack Passwords
Secure Your Key-Pair File
Limit Other Applications on the Server
Prevent Clients from Caching SSL Files
Limit Ports
Know Your Server's Limits
Consider Additional Measures for Unprotected Servers
Part 3 Configuring and MonitoringChapter 6 Configuring Server Preferences
Starting and Stopping the Server
Chapter 7 Understanding Log Files
Setting the Termination Timeout
Viewing Server Settings
Restarting the Server (Unix/Linux)
Restarting With Inittab (Unix/Linux)
Restarting the Server (Windows NT)
Restarting With the System RC Scripts (Unix/Linux)
Restarting the Server Manually (Unix/Linux)
Stopping the Server Manually (Unix/Linux)
Using the Automatic Restart Utility (Windows NT)
Adding and Using Thread Pools
The Native Thread Pool and Generic Thread Pools (Windows NT)
Configuring Network Settings
Thread Pools (Unix/Linux)
Editing Thread Pools
Using Thread Pools
Changing the Server's Location (Unix/Linux)
Customizing Error Responses
Changing the Server's User Account (Unix/Linux)
Changing the Server's User Account (Windows NT)
Changing the Server Name
Changing the Server Port Number
Changing the Server Binding Address
Changing the Server's MTA Host
Working with Dynamic Configuration Files
Using .htaccess Files
Restricting Symbolic Links (Unix/Linux)
Activating .htaccess checking
Using .nsconfig Files
Using the Watchdog (uxwdog) Process (Unix/Linux)
About Log Files
Chapter 8 Performance Configuration
Viewing an Access Log File
Viewing the Error Log File
Monitoring the Server Using HTTP
Archiving Log Files
Internal-daemon Log Rotation
Setting Log Preferences
Cron-based Log Rotation
Easy Cookie Logging
Flushing the Log Buffer
Relaxed Logging
Running the Log Analyzer
Viewing Events (Windows NT)
Server Tuning Limits
Non-SSL Servers
SSL Servers
Part 4 Using Programs and ObjectsChapter 9 Extending Your Server With Programs
Overview of Server-Side Programs
Chapter 10 Working With Configuration Styles
Types of Server-Side Applications That Run on the Server
Java Servlets and JavaServer Pages (JSP)
How Server-Side Applications Are Installed on the Server
Overview of Servlets and JavaServer Pages
Installing CGI Programs
What the Server Needs to Run Servlets and JSPs
Enabling Servlets and JSP
Making JSPs Available to Clients
Making Servlets Available to Clients
Specifying Servlet Directories
Configuring Global Attributes
Configuring Servlet Attributes
Configuring Servlet Virtual Path Translations
Configuring JRE/JDK Paths
Configuring JVM Attributes
Deleting Version Files
Overview of CGI
Installing Windows NT CGI Programs
Specifying a CGI Directory
Configuring a Unique CGI Directory for Each Software Virtual Server
Specifying CGI as a File Type
Downloading Executable Files
Overview of Windows NT CGI Programs
Installing Shell CGI Programs for Windows NT
Specifying a Windows NT CGI Directory
Specifying Windows NT CGI as a File Type
Overview of Shell CGI Programs for Windows NT
Using the Query Handler
Specifying a Shell CGI Directory (Windows NT)
Specifying Shell CGI as a File Type (Windows NT)
Server-Side JavaScript Programs
Activating Server-Side JavaScript
Enabling WAI Services
Running the Application Manager
Securing the Application Manager
Installing Server-Side JavaScript Applications
Application URLs
Controlling Access to a Server-Side JavaScript Application
Modifying Installation Parameters
Removing a Server-Side JavaScript Application
Starting, Stopping, and Restarting a Server-Side JavaScript Application
Running a Server-Side JavaScript Application
Configuring Default Settings
Creating a Configuration Style
Chapter 11 Managing Server Content
Removing a Configuration Style
Editing a Configuration Style
Assigning a Configuration Style
Listing Configuration Style Assignments
Changing the Primary Document Directory
Chapter 12 Controlling Access to Your Server
Setting Additional Document Directories
Customizing User Public Information Directories (Unix/Linux)
Restricting Content Publication
Enabling Remote File Manipulation
Loading the Entire Password File on Startup
Using Configuration Styles
Configuring Document Preferences
Entering an Index Filename
Setting Up Hardware Virtual Servers
Selecting Directory Indexing
Specifying a Server Home Page
Specifying a Default MIME Type
Parsing the Accept Language Header
Setting Up Hardware Virtual Servers for ISPs
To Set Up Hardware Virtual Servers For an ISP
To use the Server Manager for the hardware virtual servers that are uses with ISPs, see the section Setting Up Hardware Virtual Servers for ISPs.Changing the Character Set
To Edit a Server Instance
To Remove a Server Instance
Migrating Hardware Virtual Server Configuration Files
What Is Access Control?
Appendix A HyperText Transfer Protocol
Setting ACL User Cache Time
How Access Control Works
User-Group Authentication
Username and Password Authentication
Host-IP Authentication
Client Certificate Authentication
Access Control Files
Restricting Access to Your Web Site
Setting Access Control Actions
Access Control Examples
Specifying Users and Groups
Specifying Host Names and IP Addresses
Setting Access Rights
Access to Programs
Writing Customized Expressions
Selecting "Access control on"
Responding When Access is Denied
Restricting Access to the Entire Server
Restricting Access to a Directory (Path)
Restricting Access to a URI (Path)
Restricting Access to a File Type
Restricting Access Based on Time of Day
About HyperText Transfer Protocol (HTTP)
Appendix B ACL File Syntax
Requests
Request Method
Responses
Request Header
Request Data
Status Code
Response Header
Response Data
ACL File Syntax
Appendix C Internationalized iPlanet Web Server
Authentication Statements
Referencing ACL Files in obj.conf
Authorization Statements
Hierarchy of Authorization Statements
The Default ACL File
Attribute Expressions
Operators For Expressions
General Syntax Items
General Information
Appendix D iPlanet Web Server User Interface
Installing the Server
Server-side JavaScript Information
Entering 8-bit Text
File or Directory Names
Using the Accept Language Header
LDAP Users and Groups
Language Settings in Configuration Files
Specifying the Character Set for the Compiler
Search Information
Specifying the Character Set With the <META> Tag
Using Server-side Javascript With Oracle's Japanese Database
Installing Oracle and Setting Up Your Environment
Verifying the Connection
Verifying the Language Setup
Putting the Oracle Client and Database Server On Separate Hosts
International Search and Auto Catalog
Getting Support for Accented Characters in Filenames
Searching in Chinese, Japanese, and Korean
Query Operators
Document Formats
Searching in Japanese
The Servers Tab
Glossary
The Manage Servers Page
The Add Server Page
The Remove Server Page
Remove Server
The Preferences Tab
The Shut Down Page
The Network Settings Page
The Superuser Access Control Page
The Encryption On/Off Page
The Encryption Preferences Page
The Logging Options Page
The View Access Log Page
The View Error Log Page (Administration Server)
The Global Settings Tab
The Configure Directory Service Page
The NS Cron Control Page (Unix/Linux)
The Configure JRE/JDK Paths Page
The Users & Groups Tab
The New User Page
The Edit Users Page
General
The Manage Users Page
Password
License
The New Group Page
The Edit Groups Page
The Edit Members Page
The Group Cert Members Page
The Manage Groups Page
The New Organizational Unit Page
The Manage Organizational Units Page
The Edit Organizational Unit Page
The Manage Preferred Language List Page
The Security Tab
The Create a Trust Database Page
The Request a Server Certificate Page
The Install a Server Certificate Page
The Change the Key Pair File Password Page
The Manage Server Certificates Page (Administration Server)
The Install a Certificate Revocation List
The Manage Certificate Revocation Lists
The Install a New PKCS#11 Module Page
The Preferences Tab
The Server On/Off Page
The View Server Settings Page
The Restore Configuration Page
The Performance Tuning Page
The Native Thread Pool Page (NT)
The Thread Pools Page
The Thread Pools Page
The Global MIME Types Page
The Network Settings Page
The Custom Error Responses Page
The Dynamic Configuration Files Page
The Access Control List Management Page
The Edit Access Control Page
Pick a Resource
Pick an Existing ACL
Type in the ACL Name
Upper Frame
The Encryption On/Off Page
Lower Frame
Allow/Deny
User/Group
From Host
Rights
Customized Expressions
Access Deny Response
The Encryption Preferences Page
The Enforce Strong Security Requirements Page
The Programs Tab
The CGI Directory Page
The CGI as a File Type Page
The Query Handler Page
The WINCGI Directory Page (Windows NT)
The Shell CGI Directory Page (Windows NT)
The Servlets Tab
The Enable Servlets/JSP Page
The Servlet Directory Page
The Legacy JSP Directory Page
The Configure Global Attributes for Servlets Page
The Configure Servlet Attributes Page
The Configure Servlet Virtual Path Translation Page
The Configure JVM Attributes Page
The Delete Version Files Page
The Security Tab
The Create a Trust Database Page
The Request a Server Certificate Page
The Install a Server Certificate Page
The Change the Key Pair File Password Page
The Manage Server Certificates Page
The Status Tab
The View Access Log Page
The View Error Log Page
The Monitor Current Activity Page
The Archive Log Files Page
The Log Preferences Page
The Generate Report Page
The Styles Tab
The Create a New Style Page
The Remove a Style Page
The Edit a Style Page
The Assign a Style Page
The List Assignments Page
The Content Management Tab
The Primary Document Directory Page
The Additional Document Directories Page
The User Document Directories Page (Unix/Linux)
The File Manipulation Page
The Document Preferences Page
The URL Forwarding Page
Add Another Forward
The Hardware Virtual Servers Page
Current Forwarding
The Software Virtual Servers Page
The International Characters Page
The Document Footer Page
The Parse HTML Page
The Cache Control Directives Page
Index
Index Next
Copyright © 2000 Sun Microsystems, Inc. Some preexisting portions Copyright © 2000 Netscape Communications Corp. All rights reserved.
Last Updated July 13, 2000