User guide

ManualsBrandsRed Hat ManualsComputer equipmentNETSCAPE ENTERPRISE SERVER 6.0 - NSAPI PROGRAMMER GUIDE

141

142

143

144

145

146

147

148

149

150

Setup of Authentication Server

2-67

When the scsmakeenv command is terminated normally, the CSR is output to the file specified with the -

f option of the scsmakeenv command. Send the file to the certificate authority and request to issue the

CSR. The requesting method depends on the certificate authority.

The following is an example in which the Interstage certificate environment granted access permission

by using iscertg and then the CSR is created.

In this example, iscertg is created as the owner group permitted access to the Interstage certificate

environment. The effective user 'nobody' is added to the owner group iscertg. 'Nobody' is set as the

initial value in the User directive of the environment configuration file (httpd.conf) of the Interstage HTTP

server. The name of the CSR output destination file is '/tmp/ssocert.txt'. Change the CSR output

destination file when necessary.

Before requesting the CSR, set the JDK or JRE installation path in environment variable JAVA_HOME.

The following example uses the Bourne shell. When password input is requested, enter the password

for access to the Interstage certificate environment. The entered password is not displayed.

When you are requested to enter distinguished names, enter them in bold as shown below.

Site Certificate Nickname: 'SERVERCERT'

CSR output destination file name: '/tmp/ssocert.txt'

Country code: jp

Alphanumeric first and last name: authenticate_server.fujitsu.com

Alphanumeric organization name: FUJITSU

Alphanumeric organizational unit name: FUJITSU TOKYO

Prefecture name: Tokyo

Municipality name: Shinjuku

Group which is permitted to access to Interstage certificate environment: iscertg

# groupadd iscertg

# usermod -G iscertg nobody

# JAVA_HOME=/opt/FJSVawjbk/jdk14;export JAVA_HOME

# scsmakeenv -n SERVERCERT -f /tmp/ssocert.txt –g iscertg

New Password:

Retype:

Input X.500 distinguished names.

What is your first and last name?

[Unknown]: authenticate_server.fujitsu.com

What is the name of your organizational unit?

[Unknown]: FUJITSU TOKYO

What is the name of your organization?

[Unknown]: FUJITSU

What is the name of your City or Locality?

[Unknown]: Shinjuku

What is the name of your State or Province?

[Unknown]: Tokyo

What is the two-letter country code for this unit?

[Un]: jp