Complete Contents
Chapter 1 Introducing Netscape Console
Chapter 2 The Netscape Server Family Setup Program
Chapter 3 Using Netscape Console
Chapter 4 User and Group Administration
Chapter 5 Using SSL
Chapter 6 Delegating Administration
Chapter 7 Using SNMP to Monitor Servers
Chapter 8 Administration Server Basics
Chapter 9 Administration Server Configuration
Appendix A Distinguished Name Syntax and Attributes
Appendix B Administration Server Command Line Tools
Appendix C FORTEZZA
Appendix D Introduction to Cryptography
Appendix E Introduction to SSL
Contents Bookshelf



A
access control information
  See ACI
access log
  defined 161
  viewing 162
access permission
  for a server 128
  for a task 131
access settings 168
ACI
  name 135
  rule 130, 132
ACI Editor
  settings and options 132
  using 131
activate SSL 93
add
  administration domain 28
  pre-4.0 server 31
  right to add 134
administration domain
  adding 28
  changing user directory settings 176
  defined 122
  modifying 30
  overview 26
administration privileges
  comparison 123
Administration Server
  access settings 168
  activating SSL 170
  defined 18
  delegated administration 122
  directory settings 172
  enabling SSL 170
  encryptions settings 170
  installation of 22
  logging options 161
  network settings 166
  single instance per server root 34
  SNMP master agent 142
  starting 159
  stopping 161
  user directory settings 174
Administration Server Administrator
  privileges 123
administrative privileges
  overview 121
adminstrative privileges
  defined 122
algorithm 221
alias 53, 89
authentication
  certificate 231
  client 228
  form signing 237
  password-based 229
  server 228
authentication, certificate 229

B
bind rules 130

C
CA 242
  certificate 234
  defined 227
  FORTEZZA card 216
  hierarchies 242
  root CA 243
CAW 215
certificate 104
  and LDAP Directory 250
  backing up 89
  CA certificate 234
  certificate-based authentication 229
  chains 243
  client 98-104, 233
  contents 238
  example of 239
  how certificates are used 231
  issuing 249
  object-signing 234
  renewing or revoking 251
  S/MIME 234
  server 234
  server certificate 81
  server certificate chain 82
  server certificate request 82-88
  trusted CA certificate 82
  types of 233
  verifying a certificate chain 248
Certificate Authority 80
  See CA.
  trusted 242
  trusted CA certificate 82
Certificate Authority Workstation 215
certificate database 77, 80
certificate group 58
Certificate Revocation List 217
  See CRL
Certificate Setup Wizard 80
certificate-based authentication
  how it works 231
certmap.conf file 98-104
changing user directory settings 177
ciphers, SSL 78-79
  choosing 78
  defined 221
  preferences 95
CKL 96, 217
client
  authentication 228
  SSL certificates 98, 233
clone a server 32
community string 152
Compare 134
Compromised Key List 217
Configuration Administrator
  Configuration Administrators group 126
  defined 122
  privileges 123
  setting access permissions 128
configuration directory 15
  defined 172
  specifying 172
construct LDAP URL 57
create
  administration domain 29
  certificate group 58
  dynamic group 56
  organizational unit 53
  server instance 32
  static group 54
  user 60
CRL
  defined 217
  managing 96
crypto card
  FORTEZZA 215
  how certified 216
Custom Installation mode 23
customize
  display fonts 36
  display preferences 36
  view of Netscape Console 35

D
delegated administration 122-125
Delete
  access control permission 134
Digital Signatures 76, 225
Directory Server 15-17
  authentication against 122
  configuration subtree 15
  installing 22
  interacting with 47-51
  LDAP URL 57
  mapping client certificate to 98-104
  user subtree 15
Directory Server Gateway 168
directory settings 172
display preferences 36
  fonts 36
  profile 38
distinguished name
  See DN.
DN
  defined 238
  overview 48
Domain Administrator
  defined 122
  privileges 123
dynamic group 56

E
edit
  password 63
  user or group directory entry 63
email, signed and encrypted 235
encryption
  defined 221
  external devices 76
  PKCS # 11 module 76
  public-key 223
  SSL overview 76
  symmetric-key 222
encryption settings 170
end user
  administration page 50
End-user page 168
error log
  defined 161
  viewing 163
Express Installation mode 23
external encryption devices 76
external token 77

F
fonts, customizing 36
form signing 237
FORTEZZA
  and PKCS # 11 module 76
  choosing 83
  defined 215
  enabling 217
  FORTEZZA card 77
  how it works 215

G
group 54-60
  certificate group 58
  dynamic group 56
  static group 54

I
install 22
  Install.htm 22
  installation modes 22
  Netscape Console 24
  SSL certificate 81, 89
internal token 77

K
key 221
key recovery 250
key-pair 80
  Certificate Setup Wizard 80
  overview 77

L
language, preferred 62
LDAP URL 57
license, tracking 62
Litronic cryptographic module 76
logging in to Netscape Console 25
logging options 161

M
master agent 142
members, adding to static group 55
migrate a server 32

N
navigation tree
  customizing 36
  overview 26
Netscape Console 19
  installing by itself 24
  logging in 25
network settings 166

O
object signing 238
organizational unit
  creating 53
  defined 52
overview 26
Owner DN 29

P
password
  editing 63
  for Trust Database 96
password-based authentication 229
permission
  permssions used in ACIs 129
permission, access 128
PKCS # 11 module 76
  setting up 77
pre-4.0 server 30-33
  adding 30
preferences
  display 36
preferred language 62
private key 223
public key
  defined 223
  infrastructure 248
  management 250
public-key
  cryptography 220
Public-Key Encryption 76

R
Read
  access control permission 134
recover a key 250
Registration Authority 252
remove
  server instance 34
  user, group, or organizational unit 63
renew certificate 251
request for server certificate 82-88
resources
  access to 126
  defined 26
revoke a certificate 251
rights, access control 134
rule, ACI 132
rules 130

S
S/MIME certificate 234
search
  changing the search directory 50
  for a user or group 48
  Search access control permission 134
Secure Sockets Layer protocol
  See SSL
self-signed certificate 243
Selfwrite 134
server
  authentication 228
  certificate 84
  changing user directory settings 178
  task 131
Server Administrator 122
  privileges 123
server certificate 81, 234
server certificate chain 89
server certificate request 82-88
server group 26, 122, 177
  defined 18
  providing access to 122
server instance
  creating 33
  removing 34
server, Netscape
  certificate 82-88
  cloning 32
  creating new instance of 32
  installing 22
  migrating to 4.0 32
  opening 28
  remove instance 34
  uninstalling 34
Setup Program 21
single sign-on 236
SNMP
  community string 152
  defined 142-143
  enabling master agent 149
  enabling subagent 154
  how it works 143-145
  master agent 142
  native daemon 148
  proxy agent 147
  setting up 145-146
  subagent 142
  trap destinations 154
SSL client 98-104
SSL protocol 76-81
  ciphers 90
  client certificates 233
  external token 77
  internal token 77
  options 80
  server certificate chain 89
  slots and tokens 77
  token 90
static group
  creating 54
  defined 54
subagent 142
subagent, SNMP 154

T
target 135
  ACI 129
task 131
TCP/IP 220
test LDAP URL 57
token 83, 90
token, for SSL 82
tokens, SSL protocol 77
topology, Netscape 122
track user licenses 62
trap, SNMP 154
Trust Database 84
  password 96
trusted CA
  defined 242
Typical Installation mode 23

U
uninstall a Netscape server 34
user
  create 60
  preferred language 62
user directory 15
  defined 174
user directory settings 174

V
view, customized 35

W
Write
  access control permission 134
 

© Copyright 1998 Netscape Communications Corporation