Manualshelf

User guide

ManualsBrandsRed Hat ManualsComputer equipmentNETSCAPE ENTERPRISE SERVER 6.0 - NSAPI PROGRAMMER GUIDE
141142143144145146147148149150
Setup of Authentication Server
2-73
# JAVA_HOME=/opt/FJSVawjbk/jdk14;export JAVA_HOME
# scsenter –n CRLCACERT –f /tmp/crlca-cert.cer
Password:
Certificate was added to keystore
UX:SCS: INFO: scs0104: Certificate was imported
#
Registering CRL
To confirm the validity of a certificate, the CRL that was acquired from the certificate authority must be
registered using the certificate and CRL registration command (scsenter).
In the scsenter command, specify the password that was specified in the scsmakeenv command to
access the security environment.
The -o option must always be specified to register the CRL.
Refer to 'SSL Commands' in the Reference Manual (Command Edition) for details of the scsenter
command.
The validity of a user's certificate can be confirmed by setting [Yes] in [Enable Certificate Revocation
Check?] of [Certificate Authentication Settings] during setup of the environment authentication server
after CRL registration.
Example
CRL that was acquired from certificate authority: 'C:\WINNT\temp\crl.crl'
The following is an example of the scsenter command in which C:\WINNT\temp\crl.crl is specified as the
acquired CRL. Change the CRL file path when necessary.
When password input is requested, enter the password for access to the Interstage certificate
environment. The entered password is not displayed.
C:\>scsenter –c –f C:\WINNT\temp\crl.crl
Password:
SCS: INFO: scs0105: CRL was imported
C:\>
CRL that was acquired from certificate authority: '/tmp/crl.crl'
The following shows an example of the scsenter command in which /tmp/crl.crl is specified as the
acquired CRL. Change the CRL file path when necessary.
Before registering the CRL, set the JDK or JRE installation path in environment variable JAVA_HOME.