Restricting Access To The Internal Database; Backing Up And Restoring Certificate System - Red Hat CERTIFICATE SYSTEM 7.2 - ADMINISTRATION Administration Manual
Hide thumbs
Also See for CERTIFICATE SYSTEM 7.2 - ADMINISTRATION:
- Manual (240 pages) ,
- Reference manual (337 pages) ,
- Release note (24 pages)
Table of Contents
Advertisement
Chapter 3. Administrative Basics
Check all the rights in the Rights tab.
Click This Entry in the Targets tab.
11. Click OK.
3.12.3. Restricting Access to the Internal Database
The Red Hat Directory Server Console displays an entry or icon for the Directory Server instance that
the Certificate System uses as its internal database.
Unlike the Certificate System Console, in which access is restricted to users with Certificate System
administrator privileges, the Directory Server Console can be accessed by any user. The user can
open the Directory Server Console for the internal database and change to the data stored there,
such as deleting users from the Certificate System administrators group or adding his own entry to the
group.
Access can be restricted to the internal database to only those users who know the Directory Manager
DN and password. This password can be changed by modifying the single sign-on password cache.
1. Log into the Directory Server Console.
2. Select the Certificate System internal database entry, and click Open.
3. Select the Configuration tab.
4. In the navigation tree, expand Plug-ins, and select Pass-Through Authentication.
5. In the right pane, deselect the Enable plugin checkbox.
6. Click Save.
The server prompts to restart the server.
7. Click the Tasks tab, and click Restart the Directory Server.
8. Close the Directory Server Console.
9. When the server is restarted, open the Directory Server Console for the internal database
instance.
The Login to Directory dialog box appears; the Distinguished Name field displays the Directory
Manager DN; enter the password.
The Directory Server Console for the internal database opens only if the correct password is
entered.
3.13. Backing up and Restoring Certificate System
Backup and restore tools are no longer included with the Certificate System. However, the Certificate
System components can still be archived and restored manually, and this can be necessary for
deployments where information cannot be accessed if certificate or key information is lost. There are
three major parts of the Certificate System which need backed up routinely in case of data loss or
hardware failure:
98
Advertisement
Table of Contents
Need help?
Do you have a question about the CERTIFICATE SYSTEM 7.2 - ADMINISTRATION and is the answer not in the manual?
Questions and answers