Table of Contents
Advertisement
Securing the Connection with
6
Novell Audit
®
Novell
Audit utilizes SSL certificates to ensure that communications between a logging
application and the Secure Logging Server are secure. By default, the Secure Logging Server
utilizes an embedded root certificate generated by an internal Novell Audit Certificate Authority
(CA). Also, by default, the Identity Manager Instrumentation utilizes a public certificate that is
signed by the Secure Logging Server root certificate. You can, however, configure Novell Audit to
use certificates generated by an external CA.
The following sections review how to use custom certificates to secure the connection between
Identity Manager and Novell Audit:
Section 6.1, "Updating the Novell Audit Certificate Infrastructure," on page 31
Section 6.2, "The Novell Audit AudCGen Utility," on page 32
Section 6.3, "Creating a Root Certificate for the Secure Logging Server," on page 35
Section 6.4, "Creating Logging Application Certificates," on page 36
Section 6.5, "Validating Certificates," on page 37
Section 6.6, "Securing Custom Certificates," on page 37
6.1 Updating the Novell Audit Certificate
Infrastructure
You can change the internal Novell Audit CA and embedded product certificates to certificates
signed by your enterprise CA so you can integrate Novell Audit with your enterprise security
infrastructure.
WARNING: Although the process of using certificates signed by external CAs is relatively simple,
the consequences of failing to change all required components are serious. Logging applications
might fail to communicate with your Secure Logging Server, so events are not recorded.
To update your Novell Audit certificate infrastructure with a custom certificate:
1 Identify all Secure Logging Servers and Identity Manager servers where certificates are
located.
2 Use AudCGen to generate a CSR for the Secure Logging Server.
For information on generating a CSR with AudCGen, see
Certificates" on page
3 Have the CSR signed by your enterprise CA.
If necessary, convert the returned certificate to a Base64-encoded .pem file.
4 Shut down all Secure Logging Servers and Identity Manager servers.
5 Delete and purge all application cache (lcache) files.
36.
"Creating Logging Application
Securing the Connection with Novell Audit
6
31
Advertisement
Table of Contents
Subscribe to Our Youtube Channel
Related Manuals for Novell IDENTITY MANAGER 3.6. - INTEGRATION
Related Products for Novell IDENTITY MANAGER 3.6. - INTEGRATION
- NOVELL IDENTITY MANAGER 3.6.1 - STAGING BEST PRACTICES GUIDE 2010
- NOVELL IDENTITY MANAGER 3.6.1 - NULL SERVICE AND LOOPBACK SERVICE DRIVERS
- NOVELL IDENTITY MANAGER 3.6.1 - JOBS GUIDE
- NOVELL IDENTITY MANAGER 3.6.1 - TASK SERVICE DRIVER
- NOVELL POLICIES IN IMANAGER 3.6.1 - 06-05-2009
- Novell 3.6 05-2008
- NOVELL ACCESS MANAGER 3.1 SP2 - README 2010
- NOVELL ACCESS MANAGER 3.1 SP2 BETA 1 - SCENARIOS 2009
- NOVELL IFOLDER 3.8 - CROSS-PLATFORM
- NOVELL ZENWORKS ENDPOINT SECURITY MANAGEMENT 3.5
- NOVELL ACCESS MANAGER 3.1 SP1 - IDENTITY SERVER
- NOVELL ACCESS MANAGER 3.1 SP2 - SSL VPN USER GUIDE 2010
- Novell Enhanced Smart Card Method 3.0.1
- Novell iFOLDER 3.x
- Novell Access Manager 3.1 SP2 Beta 1
- Novell Access Manager 3.1 SP 2
Need help?
Do you have a question about the IDENTITY MANAGER 3.6. - INTEGRATION and is the answer not in the manual?
Questions and answers