Securing Your Enterprise Server
This chapter describes how to activate the various security features designed to
safeguard your data, deny intruders access, and allow access to those you want.
Netscape Enterprise Server 6.0 incorporates the security architecture of all
Netscape servers: it's built on industry standards and public protocols for
maximum interoperability and consistency.
Before reading this chapter you should be familiar with the basic concepts of
public-key cryptography. These concepts include encryption and decryption;
public and private keys; digital certificates; and the encryption protocols. For more
information, see Managing Servers with Netscape Console.
The process of securing your web server will be explained in detail in the following
sections:
•
Requiring Authentication
•
Creating a Trust Database
•
Requesting and Installing a VeriSign Certificate
•
Requesting and Installing Other Server Certificates
•
Migrating Certificates When You Upgrade
•
Managing Certificates
•
Installing and Managing CRLs and CKLs
•
Setting Security Preferences
•
Using External Encryption Modules
•
Setting Client Security Requirements
•
Setting Stronger Ciphers
•
Considering Additional Security Issues
Chapter 5
89