Table of Contents
Advertisement
•
Online Certificate Status Manager Signing Certificate—choose this option if
you want to request a signing certificate for the Online Certificate Status
Manager.
•
Registration Manager Signing Certificate—choose this option if you want to
request a signing certificate for the Registration Manager.
•
SSL Server Certificate—choose this option if you want to generate an SSL
server certificate request for the CMS manager.
•
Other—choose this option if you want to generate a certificate request for a
certificate that is not generated by a CMS manager by default. For example, in
a Certificate Manager, you can use this option to request a CRL signing
certificate or a separate SSL client certificate exclusively for authenticating to
the publishing directory. Be sure to specify the certificate type in the adjoining
field. By default only two certificate types are supported:
CRL signing certificate and
SSL Client Certificate for a Subsystem" on page 322)
Step 3. Specify the Key-Pair Information
Specify the key-pair information for the certificate to be requested.
You need to identify the following:
•
The token that contains the key pair for generating the certificate request—the
drop-down list shows the names of tokens currently installed for the selected
CMS instance; these are the tokens you can use now.
The internal token is identified as internal. You should choose this option if
the key pair for the certificate you chose in the previous step is stored in
the local key database.
The names of external tokens vary, matching the names specified when the
tokens were installed. You should choose this option if the key pair for the
certificate you chose in the previous step is in an external cryptographic
device. If you don't see the token you want to use, exit from the wizard,
make sure the token is installed properly, restart the server, and repeat the
process. For information on using or installing external tokens, see
"External Token" on page 316.
•
The key pair for generating the certificate request—you can choose to generate
the certificate request based on an existing or a new key pair.
If you want to renew the certificate you selected in the previous step, use
the existing key pair for generating the request. For example, you can
extend the validity period of a certificate by renewing it.
for SSL client certificate (see "Getting an
client
Chapter 7
Managing the Certificate Database
for the
caCrlSigning
Administrative Basics
301
Advertisement
Table of Contents
Related Manuals for Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - ADMINISTRATOR
Related Products for Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - ADMINISTRATOR
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - CUSTOMIZATION
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - CUSTOMIZATION
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - ADMINISTRATOR
- Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - CUSTOMIZATION GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - PLUG-IN