Step 2. Restrict Access To The Internal Database - Netscape MANAGEMENT SYSTEM 6.0 Installation And Setup Manual
Hide thumbs
Also See for NETSCAPE MANAGEMENT SYSTEM 6.0:
- Manual (302 pages) ,
- Installation and migration manual (66 pages) ,
- Administrator's manual (470 pages)
Table of Contents
Advertisement
Configuring the Internal Database
You can configure the host name to something other than
know what you are doing and you think you can limit the visibility of the
internal database to a local subnet. For example, if you installed Certificate
Management System and Directory Server on separate machines for load
balancing, you will have to specify the host name of the machine in which
Directory Server is installed.
Port number. Type a TCP/IP port number; Certificate Management System
uses this port for non-SSL communications with the Directory Server instance
that is functioning as the internal database. Make sure that the port you specify
is unique on the host system.
Directory manager DN. Type the distinguished name (DN) of an entry in your
LDAP directory that has read and write permission to the entire directory tree.
Certificate Management System will use this DN when it accesses the directory
tree to communicate with the directory. Keep in mind that the access control
set up for this DN determines whether Certificate Management System can
communicate with the directory. Typically, you would want to enter the
directory manager's DN (the root DN) because this DN will have read/write
permission to the entire directory tree.
To save your changes, click Save.
4.
The CMS configuration is modified. If the changes you made require you to
restart the server, you will be prompted accordingly. In that case, restart the
server.
Step 2. Restrict Access to the Internal Database
This step is optional.
Netscape Console displays an entry or icon for the Directory Server instance that
Certificate Management System uses as its internal database. You can distinguish
an internal database instance from other Directory Server instances. It is in this
form:
Unlike the CMS window, access to which is restricted to users with CMS
administrator privileges, the Directory Server window can be accessed by the
person who has privileges to access Netscape Console. That is, this person can
open the Directory Server window for the internal database and make changes to
the data stored there. For example, this person can make changes to the CMS
administrators group, such as deleting existing users and adding entries for self.
368
Netscape Certificate Management System Installation and Setup Guide • March 2002
slapd-<cms_instance_id>-db
if you
localhost
Advertisement
Table of Contents
