Manualshelf

Installation guide

ManualsBrandsRed Hat ManualsComputer equipmentNETSCAPE DIRECTORY SERVER 6.02 - DEPLOYMENT
41424344454647484950
Using Secure Sockets Layer (SSL) With an Agent
48 Sun ONE Identity Server Policy Agents 2.1 Web Policy Agents Guide April 2005
Disabling the Agent’s Default Trust Behavior
The following property in the AMAgent.properties file controls the agent’s trust
behavior, and by default it is set to true:
com.sun.am.trustServerCerts=true
This means that the agent does not perform certificate checking.
To Disable the Default Behavior
1. Set the following property to false:
com.sun.am.trustServerCerts=false
2. Set the directory Cert DB in the file AMAgent.properties as shown in the
following example:
com.sun.am.policy.am.sslCertDir= /opt/SUNWam/servers/alias
For Apache agent, set as following:
com.sun.am.policy.am.sslCertDir= /etc/apache/cert
For IBM HTTP Server, set as following:
com.sun.am.policy.am.sslCertDir=/opt/IBMHTTPD/cert
For Domino Web Server, set as following:
com.sun.am.policy.am.sslCertDir=/opt/domino/cert
3. Set the Cert DB Prefix, if required.
In cases where the specified Cert DB directory has multiple certificate
databases, the following property must be set to the prefix of the certificate
database to be used.
com.sun.am.policy.am.certDbPrefix
For example, set the property for Sun ONE Web Server as this:
com.sun.am.policy.am.certDbPrefix =https-host.domain.com.host-