Table of Contents
Advertisement
Specify a name for the certificate, and click Next.
5.
Select the purpose of trusting this Certificate Authority (you can select both):
6.
Accepting connections from clients (Client Authentication). The server
checks that the client's certificate has been issued by a trusted Certificate
Authority.
Accepting connections to other servers (Server Authentication). This server
checks that the directory to which it is making a connection (for example, for
replication updates) has a certificate that has been issued by a trusted
Certificate Authority.
Click Done to dismiss the wizard.
7.
Once you have installed your certificate and trusted the CA's certificate, you are
ready to activate SSL. However, you should first make sure that the certificates
have been installed correctly.
Step 5: Confirm That Your New Certificates Are
Installed
On the Directory Server Console, select the Tasks tab and click Manage
1.
Certificates.
The Manage Certificates window is displayed.
Select the Server Certs tab.
2.
A list of all the installed certificates for the server is displayed.
Scroll through the list. You should find the certificates you installed.
3.
Your server is now ready for SSL activation.
Activating SSL
Most of the time, you want your server to run with SSL enabled. If you temporarily
disable SSL, make sure you re-enable it before processing transactions that require
confidentiality, authentication, or data integrity.
Before you can activate SSL, you must create a certificate database, obtain and
install a server certificate and trust the CA's certificate as described in "Obtaining
and Installing Server Certificates," on page 383.
Activating SSL
Chapter 11
Managing SSL
387
Advertisement
Table of Contents
Troubleshooting
