Step E. Specify The Directory Authentication Method - Netscape MANAGEMENT SYSTEM 4.5 Installation And Setup Manual

Configuring a Certificate Manager to Publish Certificates and CRLs

Step E. Specify the Directory Authentication Method

Depending on how you want the Certificate Manager to authenticate to the
directory, you must set up Directory Server for one of the following methods of
communication:
• Basic authentication
• SSL without client authentication
• SSL with client authentication
The instructions that follow explain how to configure Netscape Directory Server
4.x for all of the above methods of communication. If you're using any other
directory, refer to the documentation that accompanied that product.
Publishing With Basic Authentication
To configure Directory Server for basic authentication:
Go to the Directory Server window.
1.
Select the Configuration tab, and then in the right pane, select the Encryption
2.
tab.
Make sure that the Enable SSL box is unchecked. If it's checked, uncheck it.
3.
Click Save.
4.
You are prompted to restart the server. Don't restart the server yet; you can do
this after you've made all the configuration changes.
Publishing Over SSL Without Client Authentication
To configure the Directory Server for SSL-enabled communication:
Go to the Directory Server window.
1.
Select the Configuration tab, and then in the right pane, select the Encryption
2.
tab.
Check the Enable SSL box.
3.
In the Cipher Family section, check the RSA box.
4.
Click the Cipher Preferences button and select the appropriate SSL ciphers.
5.
For details on individual ciphers, click the Help button.
622 Netscape Certificate Management System Installation and Setup Guide • October 2001