Novell ACCESS MANAGER 3.1 SP1 - ADMINISTRATION Manual page 45
Administration console guide
Hide thumbs
Also See for ACCESS MANAGER 3.1 SP1 - ADMINISTRATION:
- Manual (208 pages) ,
- Installation manual (42 pages) ,
- Quick start manual (24 pages)
Table of Contents
Advertisement
The Administration Console creates a keystore in the file system of the device that is assigned to the
keystore.
Linux Device:
/opt/novell/devman/jcc/certs/<device>
Windows Device:
C:\Program Files\novell\devman\jcc\certs/<device>
The <device> can be idp (for the Identity Server), esp (for the Embedded Service Providers,
including Access Gateways, J2EE agents, and SSL VPN servers), or sslvpn (for the SSL VPN
server).
Access Manager creates keystores for the following devices:
"Identity Server Keystores" on page 45
"Access Gateway Keystores" on page 45
"J2EE Agent Keystores" on page 46
"SSL VPN Keystores" on page 46
"Keystores When Multiple Devices Are Installed on the Administration Console" on page 47
Identity Server Keystores
Access Manager creates the following keystores for each Identity Server cluster configuration:
Signing: This keystore contains the certificate that is used for signing the assertion or specific parts
of the assertion.
Encryption: This keystore contains the certificate that is used to encrypt specific fields or data in
assertions.
SSL Connector: This keystore contains the certificate that the Identity Server uses for SSL
connections. If multiple devices are installed on the same machine, the Identity Server uses the
COMMON_TOMCAT_CLUSTER keystore.
Provider Introductions SSL Connector: This keystore contains the certificate that you configure
when you set up the Identity Server to provide introductions to service providers that are trusted
members of a service domain. The subject name of this certificate needs to match the DNS name of
the service domain.
Consumer Introductions SSL Connector: This keystore contains the certificate that you configure
when you set up the Identity Server to consume authentications provided by other identity providers
that are trusted members of a service domain. The subject name of this certificate needs to match the
DNS name of the service domain.
Access Gateway Keystores
Access Manager creates the following keystores for each Access Gateway or cluster:
Signing: This keystore contains the certificate that is used for signing the assertion or specific parts
of the assertion.
Encryption: This keystore contains the certificate that is used to encrypt specific fields or data in
assertions.
Security and Certificate Management
45
Advertisement
Chapters
Table of Contents
Troubleshooting
Related Manuals for Novell ACCESS MANAGER 3.1 SP1 - ADMINISTRATION
Related Products for Novell ACCESS MANAGER 3.1 SP1 - ADMINISTRATION
- NOVELL ACCESS MANAGER 3.1 SP2 - README 2010
- NOVELL ACCESS MANAGER 3.1 SP2 BETA 1 - SCENARIOS 2009
- NOVELL ACCESS MANAGER 3.1 SP1 - AGENT GUIDE
- NOVELL ACCESS MANAGER 3.1 SP1 - IDENTITY SERVER
- NOVELL ACCESS MANAGER 3.1 SP2 - SSL VPN USER GUIDE 2010
- Novell Access Manager 3.1 SP 1
- Novell Access Manager 3.1 SP2 Beta 1
- Novell Access Manager 3.1 SP 2
- NOVELL CLIENT LOGIN EXTENSION 3.7 - ADMINISTRATION
- NOVELL IDENTITY ASSURANCE SOLUTION 3.0.2 - ADMINISTRATION
- NOVELL IDENTITY MANAGER 3.6.1 - STAGING BEST PRACTICES GUIDE 2010
- NOVELL IDENTITY MANAGER 3.6.1 - NULL SERVICE AND LOOPBACK SERVICE DRIVERS
- NOVELL IFOLDER 3 - ADMINISTRATION
- NOVELL IFOLDER 3.8 - CROSS-PLATFORM
- NOVELL POLICIES IN IMANAGER 3.6.1 - 06-05-2009
- NOVELL POLICY IN DESIGNER 3.5 - 09-18-2009