Novell ACCESS MANAGER 3.1 SP1 - IDENTITY SERVER Manual page 60

nfjava.jar
kmjava.jar
kmcsp.jar
spp.jar
rsaprivenc.jar
jutils.jar:
jcetools.jar
keysafe.jar
Your line should look similar to the following:
CLASSPATH="$JAVA_HOME"/lib/tools.jar:/opt/nfast/java/classes/
nfjava.jar:/opt/nfast/java/classes/kmjava.jar:/opt/nfast/java/
classes/kmcsp.jar:/opt/nfast/java/classes/spp.jar:/opt/nfast/
java/classes/rsaprivenc.jar:/opt/nfast/java/classes/
jutils.jar:/opt/nfast/java/classes/jcetools.jar:/opt/nfast/
java/classes/keysafe.jar
2c Save your changes.
3 Add the
usermod novlwww -G nfast
4 Add the netHSM certificate configuration lines to the
4a In a text editor, open the
4b Add the following lines:
JAVA_OPTS="${JAVA_OPTS} -Dcom.novell.nidp.extern.config.file=
/var/opt/novell/tomcat5/webapps/nidp/WEB-INF/classes/
externKeystore.properties"
JAVA_OPTS="${JAVA_OPTS} -Dprotect=module
-DignorePassphrase=true"
The first line specifies the location of the properties file. You can specify another location.
The second line is required only if you want the keystore to be module protected rather
than card protected.
5 Configure the
5a In a text editor, create an
tomcat5/webapps/nidp/WEB-INF/classes
If you specified a different location for this file in
5b Add the following lines:
com.novell.nidp.extern.signing.providerClass=com.ncipher.provider.km.
nCipherKM
com.novell.nidp.extern.signing.providerName=nCipherKM
com.novell.nidp.extern.signing.keystoreType=nCipher.sworld
com.novell.nidp.extern.signing.keystoreName=/opt/novell/devman/jcc/
certs/idp/AMstore.jks
com.novell.nidp.extern.signing.keystorePwd=mypwd
com.novell.nidp.extern.signing.alias=od93
com.novell.nidp.extern.signing.keyPwd=mypwd
60 Novell Access Manager 3.1 SP1 Identity Server Guide
user to the
novlwww nfast
/var/opt/novell/tomcat5/conf/tomcat5.conf
externKeystore.properties
externKeystore.properties
group by entering the following command:
tomcat5.conf
file to use the nCipher key and keystore:
directory.
Step 4, use that location.
file:
file.
file in the
/var/opt/novell/