Difference between revisions of "Certificate Authority"

From MicroFocusInternationalWiki
Jump to: navigation, search
m (YAT)
(Links)
Line 25: Line 25:
  
 
A couple of TIDs to remember:
 
A couple of TIDs to remember:
 +
 +
TID 10100262: "Howto renew a server certificate for VPN server"
 +
:http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=10100262&sliceId=&dialogID=41024729&stateId=0%200%2041030923
  
 
TID 3618399: "How do I move the Organizational CA to another server?"
 
TID 3618399: "How do I move the Organizational CA to another server?"

Revision as of 20:40, 17 July 2007

Draft CA Wiki

Starting point for Certificate Authority wiki -- for those who need to move their CA

Anders says, "Make sure that you create the new one in a format that you can backup."

Richard suggests the following for health checks:

"To examine the CA and W0 objects in the Security container and make sure they're correct, check the following things (from memory, incomplete list):

  • Security's NDSPKI:Tree CA DN=correct
  • W0's NDSPKI:SD Key ServerDN=correct
  • CA's Host Server=correct
  • Validate Org Certificate Authority's certs"

Related Utilities

  • pkidiag
  • sdidiag
  • tckeygen
  • ConsoleOne

Links

A couple of TIDs to remember:

TID 10100262: "Howto renew a server certificate for VPN server"

http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=10100262&sliceId=&dialogID=41024729&stateId=0%200%2041030923

TID 3618399: "How do I move the Organizational CA to another server?"

http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=3618399&sliceId=SAL_Public&dialogID=33907651&stateId=0%200%2033915534

TID 3623407: "Certificate Server Issues-Removing a Server from a Tree"

http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=3623407&sliceId=SAL_Public&dialogID=33987106&stateId=0%200%2033989071

TID 10090166: "VeriSign Intermediate CA Replacement Instructions for NetWare 6 and NetWare 6.5"

http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=10090166&sliceId=&dialogID=36982594&stateId=1%200%202682804

The ConsoleOne documentation --

http://www.novell.com/documentation/crt27/crtadmin/data/fbgcdhec.html#fbgcdhec

For NW5.1 and NW6.0 --

TID 10050254: 'Reinstalling Certificate Server"

http://support.novell.com/cgi-bin/search/searchtid.cgi?/10050254.htm

TID 10060118: "How do I move the Organizational CA to another server? "

http://support.novell.com/cgi-bin/search/searchtid.cgi?/10060118.htm

TID 10065940: "Moving the Certificate Authority"

http://support.novell.com/cgi-bin/search/searchtid.cgi?/10065940.htm

For NW6.0 --

TID 10071751: "Backing up and Moving the Tree Certificate Authority"

http://support.novell.com/cgi-bin/search/searchtid.cgi?/10071751.htm

This Wiki artcle can help with the tranistion to Linux, if you need it:

Recreating Server Certificates on OES Linux

Other Key Words to Study

  • Key Material Object

Room for Corrections

Looking forward to the sysops' notes on this page.