Setting Up Cipher Preferences For Ssl Communications - Netscape MANAGEMENT SYSTEM 6.0 Installation And Setup Manual
Hide thumbs
Also See for NETSCAPE MANAGEMENT SYSTEM 6.0:
- Manual (302 pages) ,
- Installation and migration manual (66 pages) ,
- Administrator's manual (470 pages)
Table of Contents
Advertisement
Configuring the Server's Security Preferences
Once you have the certificate request ready, submit it to a CA so that it can
6.
issue a certificate. For general instructions to use the wizard to request a
certificate, see section "Using the Wizard to Request a Certificate" on page 437.
If you submitted the request to a Certificate Manager and if you have agent
7.
privileges for that Certificate Manager, log in to its Agent Services interface,
locate the request, and check the request for required extensions. (If you
submitted the request to any other CA, you must ask the person managing that
CA to make the same changes to the request before approving it.)
Make sure that only the
request. For certificates with no Netscape Certificate Type extensions, the Key
Usage extension must be included with
Approve the request.
8.
Once you have the certificate ready, restart the wizard and install the certificate
9.
in the Certificate Manager's database. For general instructions to use the
wizard to add a certificate, see "Using the Wizard to Install a Certificate or
Certificate Chain" on page 452.
Note that the default nickname for the certificate is
crlSigningCert cert-<instance_id>
CMS instance in which the Certificate Manager is installed.
After you've installed the certificate successfully, go to the Tasks tab and stop
10.
the Certificate Manager.
Configure the Certificate Manager to use this certificate.
11.
After you install the certificate, configure the Certificate Manager to use the
new certificate for SSL client authentication to the publishing directory. For
instructions, see "Step 5. Identify the Publishing Directory" on page 636.
Setting Up Cipher Preferences for SSL
Communications
A cipher is the algorithm used in encryption. Some ciphers have stronger encryption
capabilities than others. Generally speaking, the more bits a cipher uses during
encryption, the harder it is to decrypt the data.
When a client initiates an SSL connection with Certificate Management System, it
lets the server know what ciphers it prefers to use to encrypt information. In any
two-way encryption process, both parties must use the same ciphers. A number of
ciphers are available; your server needs to be able to use the most popular ones.
462
Netscape Certificate Management System Installation and Setup Guide • March 2002
option for certificate type is selected in the
SSL Client
Signing
, where
and
bits set.
Encryption
identifies the
<instance_id>
Advertisement
Table of Contents
