Difference between revisions of "Certificate Authority"

From MicroFocusInternationalWiki
Jump to: navigation, search
m (YAT)
m (okay, no nls in URL title)
 
(12 intermediate revisions by 3 users not shown)
Line 16: Line 16:
  
 
=== Related Utilities ===
 
=== Related Utilities ===
 
+
 
* pkidiag
 
* pkidiag
 
* sdidiag  
 
* sdidiag  
Line 25: Line 25:
  
 
A couple of TIDs to remember:
 
A couple of TIDs to remember:
 +
 +
TID 3392944: Cross Platform PKIDIAG - recreating server certificates
 +
:[http://www.novell.com/support/php/search.do?cmd=displayKC&docType=kc&externalId=3392944&sliceId=1&docTypeID=DT_TID_1_1&dialogID=14583484&stateId=0%200%2014581882 TID Article]
 +
 +
TID 10100262: "How to renew a server certificate for VPN server"
 +
:[http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=10100262&sliceId=&dialogID=41024729&stateId=0%200%2041030923 TID article]
  
 
TID 3618399: "How do I move the Organizational CA to another server?"
 
TID 3618399: "How do I move the Organizational CA to another server?"
:http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=3618399&sliceId=SAL_Public&dialogID=33907651&stateId=0%200%2033915534
+
:[http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=3618399&sliceId=SAL_Public&dialogID=33907651&stateId=0%200%2033915534 TID article]
  
 
TID 3623407: "Certificate Server Issues-Removing a Server from a Tree"
 
TID 3623407: "Certificate Server Issues-Removing a Server from a Tree"
:http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=3623407&sliceId=SAL_Public&dialogID=33987106&stateId=0%200%2033989071
+
:[http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=3623407&sliceId=SAL_Public&dialogID=33987106&stateId=0%200%2033989071 TID article]
  
 
TID 10090166: "VeriSign Intermediate CA Replacement Instructions for NetWare 6 and NetWare 6.5"
 
TID 10090166: "VeriSign Intermediate CA Replacement Instructions for NetWare 6 and NetWare 6.5"
:http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=10090166&sliceId=&dialogID=36982594&stateId=1%200%202682804
+
:[http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=10090166&sliceId=&dialogID=36982594&stateId=1%200%202682804 TID article]
 +
 
 +
TID 10074694: "NICI 1418 Errors"
 +
:[http://support.novell.com/cgi-bin/search/searchtid.cgi?/10074694.htm TID article]
  
 
The ConsoleOne documentation --  
 
The ConsoleOne documentation --  
  
:http://www.novell.com/documentation/crt27/crtadmin/data/fbgcdhec.html#fbgcdhec
+
:[http://www.novell.com/documentation/crt27/crtadmin/data/fbgcdhec.html#fbgcdhec Manual article]
  
 
For NW5.1 and NW6.0 --  
 
For NW5.1 and NW6.0 --  
  
 
TID 10050254: 'Reinstalling Certificate Server"
 
TID 10050254: 'Reinstalling Certificate Server"
:http://support.novell.com/cgi-bin/search/searchtid.cgi?/10050254.htm
+
:[http://support.novell.com/cgi-bin/search/searchtid.cgi?/10050254.htm TID article]
  
 
TID 10060118:  "How do I move the Organizational CA to another server? "
 
TID 10060118:  "How do I move the Organizational CA to another server? "
:http://support.novell.com/cgi-bin/search/searchtid.cgi?/10060118.htm
+
:[http://support.novell.com/cgi-bin/search/searchtid.cgi?/10060118.htm TID article]
  
 
TID 10065940: "Moving the Certificate Authority"
 
TID 10065940: "Moving the Certificate Authority"
:http://support.novell.com/cgi-bin/search/searchtid.cgi?/10065940.htm
+
:[http://support.novell.com/cgi-bin/search/searchtid.cgi?/10065940.htm TID article]
  
 
For NW6.0 --
 
For NW6.0 --
  
 
TID 10071751: "Backing up and Moving the Tree Certificate Authority"
 
TID 10071751: "Backing up and Moving the Tree Certificate Authority"
:http://support.novell.com/cgi-bin/search/searchtid.cgi?/10071751.htm
+
:[http://support.novell.com/cgi-bin/search/searchtid.cgi?/10071751.htm TID article]
 +
:''This TID was verified to work on eDir 8.8.2 with a Netware \ Linux Mixed Tree as well (Not by Novell)''
  
 
This Wiki artcle can help with the tranistion to Linux, if you need it:
 
This Wiki artcle can help with the tranistion to Linux, if you need it:
:[[Recreating Server Certificates on OES Linux]]
+
: [[Recreating Server Certificates on OES Linux]]
  
 
=== Other Key Words to Study ===
 
=== Other Key Words to Study ===

Latest revision as of 02:25, 16 May 2008

Draft CA Wiki

Starting point for Certificate Authority wiki -- for those who need to move their CA

Anders says, "Make sure that you create the new one in a format that you can backup."

Richard suggests the following for health checks:

"To examine the CA and W0 objects in the Security container and make sure they're correct, check the following things (from memory, incomplete list):

  • Security's NDSPKI:Tree CA DN=correct
  • W0's NDSPKI:SD Key ServerDN=correct
  • CA's Host Server=correct
  • Validate Org Certificate Authority's certs"

Related Utilities

  • pkidiag
  • sdidiag
  • tckeygen
  • ConsoleOne

Links

A couple of TIDs to remember:

TID 3392944: Cross Platform PKIDIAG - recreating server certificates

TID Article

TID 10100262: "How to renew a server certificate for VPN server"

TID article

TID 3618399: "How do I move the Organizational CA to another server?"

TID article

TID 3623407: "Certificate Server Issues-Removing a Server from a Tree"

TID article

TID 10090166: "VeriSign Intermediate CA Replacement Instructions for NetWare 6 and NetWare 6.5"

TID article

TID 10074694: "NICI 1418 Errors"

TID article

The ConsoleOne documentation --

Manual article

For NW5.1 and NW6.0 --

TID 10050254: 'Reinstalling Certificate Server"

TID article

TID 10060118: "How do I move the Organizational CA to another server? "

TID article

TID 10065940: "Moving the Certificate Authority"

TID article

For NW6.0 --

TID 10071751: "Backing up and Moving the Tree Certificate Authority"

TID article
This TID was verified to work on eDir 8.8.2 with a Netware \ Linux Mixed Tree as well (Not by Novell)

This Wiki artcle can help with the tranistion to Linux, if you need it:

Recreating Server Certificates on OES Linux

Other Key Words to Study

  • Key Material Object

Room for Corrections

Looking forward to the sysops' notes on this page.