Table of Contents
Advertisement
•
For a Certificate Manager the token password unlocks the private keys for the
Certificate Manager's CA signing and SSL server certificates. If the Certificate
Manager's OCSP option was enabled during installation, then the password
also unlocks the private key for the Certificate Manager's OCSP signing
certificate.
•
For a Registration Manager the token password unlocks the private keys for
the Registration Manager's signing and SSL server certificates.
•
For a Data Recovery Manager the token password unlocks the private keys for
the Data Recovery Manager's storage keys and transport and SSL server
certificates.
•
For an Online Certificate Status Manager the token password unlocks the
private keys for the Online Certificate Status Manager's signing and SSL server
certificates.
Deleting the password.conf File
You can choose to delete the password.conf file during CMS installation, the
default choice is to keep the file. You might choose to delete this file for added
security of your token passwords because this file stores the passwords in a plain
text file.
If you do delete the
password.conf
the command line. You will be prompted for the token passwords after entering
the
command. You cannot start the CMS instance from the CMS
start-cert
console. CMS console does not provide the ability to enter this password when the
file is absent.
password.conf
Password Cache
Passwords for the internal database and other database related passwords for
optional features are stored in the file
<server_root>/cert-<instance_id>/config
triple-DES encrypted with a symmetric key, which is generated and stored in the
cryptographic module. This file is opened using the single sign-on password, and
the passwords stored are used to bind to the various services.
In order to make changes to the password cache, CMS ships with a command-line
named
PasswordCache
For complete details about this utility, see the Netscape Certificate Management
System Command-Line Tools Guide.
The list of passwords stored in this file includes the following:
•
The bind password used by CMS to access and update the internal database.
file, you must start the server instance using
pwcache.db
located in the
<server_root>/bin/cert/tools
System Passwords
located in the
directory. The password cache is
Chapter 7
Administrative Basics
directory.
253
Advertisement
Table of Contents
Related Manuals for Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - ADMINISTRATOR
Related Products for Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - ADMINISTRATOR
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - CUSTOMIZATION
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - CUSTOMIZATION
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - ADMINISTRATOR
- Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - CUSTOMIZATION GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - PLUG-IN