Manualshelf

Installation guide

ManualsBrandsRed Hat ManualsComputer equipmentNETSCAPE ENTREPRISE SERVER 6.0 - INSTALLATION AND MIGRATION GUIDE
61626364656667686970
Register a Trusted Host in GUI or Console Mode
Chapter 3: Install a Web Agent on a UNIX System 65
Note also that if you specify a non-default port, that port is used for the
Policy Server‘s authentication, authorization, and accounting ports;
however, the unified server responds to any Agent request on any port.
The entry in the SmHost.conf file will resemble:
policyserver="ip_address,5555,5555,5555"
b. Click Add.
You can add more than one Policy Sever; however, for host registration,
only the first server in the list will be used. If you add multiple entries,
separate them by a comma.
If multiple Policy Servers are specified, the Agent uses them as
bootstrap servers. When the Agent starts up, the Web Agent has several
Policy Servers to which it can connect to retrieve its Host Configuration
Object. After the Host Configuration Object is retrieved, the bootstrap
Policy Server is no longer used by that server process. The Host
Configuration Object can contain another set of servers, which may or
may not include any of the bootstrap servers.
c. Click Next.
7. If you want to use FIPS encryption, choose one of the following options:
FIPS Compatibility Mode (Default)
Specifies non-FIPS mode, which lets the Policy Server and the Agents
read and write information using the existing SiteMinder encryption
algorithms. If your organization does not require the use of
FIPS-compliant algorithms, the Policy Server and the Agents can operate
in non-FIPS mode without further configuration.
FIPS Migration Mode
Specifies FIPS-migration mode, which is used when you are upgrading
an earlier version of SiteMinder to full-FIPS mode. The Policy Server and
the Agents continue to use the existing SiteMinder encryption algorithms
as you migrate your environment to use only FIPS 140-2 approved
algorithms.
FIPS Only Mode
Specifies full-FIPS mode, which requires that the Policy Server and Web
Agents read and write information using only FIPS 140-2 algorithms.
Important! A SiteMinder r12.0 SP2 installation that is running in Full
FIPS mode cannot interoperate with, or be backward compatible to,
earlier versions of SiteMinder, including all agents, custom software
using older versions of the Agent API, and custom software using PM
APIs or any other API that the Policy Server exposes. You must re-link all
such software with the r12.0 SP2 versions of the respective SDKs to
achieve the required support for Full FIPS mode.
If you are not using FIPS encryption, use the default value.
8. Click Next.