Detailed information about SSL and setting up and configuring your SSL security environment is contained in the Sun Internet Mail Server 3.5 Administrator's Guide, in the Chapter entitled "Security and Authentication."
Additionally, you can access the following web site for more information about SSL: http://home.netscape.com/assist/security. The following section describes how to modify the SSL Key Package, using command-line utilities, after you have set up your SSL environment. Before using these commands, refer to Chapter 7 of the Sun Internet Mail Server 3.5 Administrator's Guide in the sections entitled "Creating the SSL Environment," and "Creating a Self-Signed Certificate."
| |
To Delete a Key Package |
| 1. | As root, type:
|
| This command deletes the server's key package and certificate from the naming service. |
| |
To Delete the Root CA Key Package |
| 1. | As root on the local root CA machine, type:
|
Note - If you delete the local root CA key package, any certificates signed by this local root CA will no longer work.
| |
To Change a Key Pair or Distinguished Name for a Certificate |
You cannot change the key pair or DN for an existing certificate. If you want to change either of these, you will need to delete the entire key package and then regenerate it.
| |
To Change a Password for a Key Package |
 |
As root, type:
|
You need to enter the old password for the key package, then the new password twice.
| |
To Change the Local Root CA's Password |
| 1. | Log in as user skirca. |
| 2. | As skirca, type:
|
| You need to enter the old password for the key package, then the new password twice. |