Redhat NETSCAPE CONSOLE User Manual

Managing Servers with

Netscape Console

Version 6.0

December 2001

Netscape Communications Corporation ("Netscape") and its licensors retain all ownership rights to the software programs offered by Netscape (referred to herein as "Software") and related documentation. Use of the Software and related documentation is governed by the license agreement for the Software and applicable copyright law.

Your right to copy this documentation is limited by copyright law. Making unauthorized copies, adaptations or compilation works is prohibited and constitutes a punishable violation of the law. Netscape may revise this documentation from time to time without notice.

THIS DOCUMENTATION IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. IN NO EVENT SHALL NETSCAPE BE LIABLE FOR INDIRECT, SPECIAL, INCIDENTAL, OR CONSEQUENTIAL DAMAGES OF ANY KIND ARISING FROM ANY ERROR IN THIS DOCUMENTATION, INCLUDING WITHOUT LIMITATION ANY LOSS OR INTERRUPTION OF BUSINESS, PROFITS, USE, OR DATA.

Contains the Taligent ® International Classes ™ from Taligent, Inc. and IBM Corp.

Netscape and the Netscape N logo are registered trademarks of Netscape Communications Corporation in the United States and other countries. Other Netscape logos, product names and service names are also trademarks of Netscape and may be registered in some countries. Other product and brand names are trademarks of their respective owners.

The downloading, exporting, or reexporting of Netscape software or any underlying information or technology must be in full compliance with all United States and other applicable laws and regulations. Any provision of Netscape software or documentation to the U.S. government is with restricted rights as described in the license agreement for that Software.

Contents

About This Guide . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13

What’s in This Guide . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13

Conventions Used in This Guide . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13

Viewing This Guide Online . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15

To View This Manual From Netscape Console or Administration Server . . . . . . . . . . . . . . . . . . . . 15

To View This Manual From Another Product . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15

Getting Additional Help . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16

To Get Context-Sensitive Help . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16

To Search this Guide’s Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16

To Open the Product Homepage . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17

Part 1 Overview of Netscape Console . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19

Chapter 1 Introducing Netscape Console and Administration Server . . . . . . . . . . . . . . . . . 21

Chapter 2 Installing Netscape Servers and Console . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25

The Setup Program . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26

Installing a New Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26

Directory Server Must Be Installed First . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26

Administration Server Is Required in Each Server Root . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26

Installation Modes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27

Express . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27

Typical . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27

Custom . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27

Installing Netscape Console as a Stand-Alone Application . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27

To Install Netscape Console as a Stand-Alone Application on UNIX . . . . . . . . . . . . . . . . . . . . . 27

To Install Netscape Console as a Stand-Alone Application on Windows NT . . . . . . . . . . . . . . . 28

Upgrading to Version Version 6.0 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29

Upgrading Administration Server and Console . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30

To Upgrade on UNIX . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30

To Upgrade on Windows NT . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31

Upgrading a Stand-Alone Version of Netscape Console . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33

To Upgrade a Stand-Alone Version of Netscape Console on UNIX . . . . . . . . . . . . . . . . . . . . . . 33

To Upgrade a Stand-Alone Version of Netscape Console on Windows NT . . . . . . . . . . . . . . . . 34

Silent Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35

Performing a Silent Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35

To Save Your Installation Answers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35

To Perform a Silent Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36

Uninstallation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36

Uninstalling a Netscape Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36

To Uninstall a Netscape Server on UNIX . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37

To Uninstall a Netscape Server on Windows NT . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37

Silent Uninstallation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38

To Perform a Silent Uninstallation on UNIX . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38

To Perform a Silent Uninstallation on Windows NT . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39

Part 2 Netscape Console Basics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41

Chapter 3 Using Netscape Console . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43

Starting Netscape Console and Logging In . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43

Starting Netscape Console . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43

To Start Netscape Console on UNIX . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43

To Start Netscape Console on Windows NT . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44

Logging in to Netscape Console With a User Name and Password . . . . . . . . . . . . . . . . . . . . . . . . . 45

To Log in to Netscape Console With a User Name and Password . . . . . . . . . . . . . . . . . . . . . . . . 45

Logging in to Netscape Console Using Client Authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 46

To Request and Install a New Client Certificate . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47

To Make Your Client Certificate Available to Netscape Console on UNIX . . . . . . . . . . . . . . . . 47

To Make Your Client Certificate Available to Netscape Console on Windows NT . . . . . . . . . . 48

To Establish a Secure Connection With an Instance of Administration Server . . . . . . . . . . . . . 48

A Tour of Netscape Console . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49

Netscape Console Menus . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49

Netscape Console Tabs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51

The Servers and Applications Tab . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51

The Administration Domain . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 52

To Create an Administration Domain . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 52

To Modify an Administration Domain . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 53

To Remove an Administration Domain . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54

Customizing Netscape Console . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54

4 Managing Servers with Netscape Console • December 2001

Storing Display Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 55

To Change Where Display Settings are Stored . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 55

To Reset Display Settings to Their Default Values . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 55

Setting Display Fonts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 56

To Create a Font Profile . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 56

To Edit an Existing Font Profile . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 57

To Rename a Font Profile . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 57

To Use a Font Profile . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 58

To Remove a Font Profile . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 58

Customizing the Main Window . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59

To Customize the Main Window . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59

Customizing Tables . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 60

To Change Column Position in a Table . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 60

To Change the Width of Columns in a Table . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 61

Creating Custom Views of the Navigation Tree . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 61

To Create a Custom View of the Navigation Tree . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 61

Working with Custom Views . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63

To Switch to a Custom View . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63

To Edit a Custom View . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63

To Rename a Custom View . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 64

To Set Access Permissions for a Public View . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 64

To Delete a Custom View . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 64

Administration Express . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 65

Accessing Administration Express . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 65

To Open Administration Express . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 65

Using Administration Express . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67

To Start or Stop a Server Instance from Administration Express . . . . . . . . . . . . . . . . . . . . . . . . . 67

To View Basic Server Information from Administration Express . . . . . . . . . . . . . . . . . . . . . . . . . 67

To View Access and Error Logs from Administration Express . . . . . . . . . . . . . . . . . . . . . . . . . . . 67

Setting the Refresh Rate for Administration Express . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 68

To Set the Refresh Rate for Administration Express . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 68

Chapter 4 Servers in Netscape Console . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69

Working With Earlier Netscape Servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69

Adding a Pre-4.0 Server to the Tree . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69

To Add a Pre-4.0 Server to the Navigation Tree . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71

Migrating from a Pre-4.0 Server to a Newer Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71

To Migrate from a Pre-4.0 Server to a Newer Version . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 72

Working with Netscape Servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73

Opening a Server Management Window . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73

To Open a Netscape Server Management Window . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73

Creating a New Server Instance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 74

To Create a New Server Instance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 75

Modifying Host, Server Group, and Instance Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 75

To Modify Host, Server Group, and Instance Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 75

Cloning a Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76

To Clone Server Settings to Another Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76

Removing a Server Instance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76

To Remove a Server Instance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76

Uninstalling a Netscape Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77

Merging Configuration Data from Two Directory Servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77

To Merge Configuration Data from Two Directory Servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79

Chapter 5 User and Group Administration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 81

Interacting with Directory Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 81

Using Distinguished Names . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82

Distinguished Names, Attributes, and Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82

Distinguished Names . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82

Attributes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85

DN and Attribute Guidelines and Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 86

Locating a User or Group in the Directory . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 87

To Locate Users or Groups in the Directory . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 88

Choosing a Different Directory to Search . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89

To Change the Directory to Search . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89

Creating New Directory Entries . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89

Users . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 90

To Create a New User Entry in the Directory . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 90

The User’s Preferred Language . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 93

Administrators . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 93

To Create an Administrator . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94

Specifying Windows NT and UNIX Options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94

To Enable Windows NT and UNIX Panels for an Individual User . . . . . . . . . . . . . . . . . . . . . . . 95

To Enable Windows NT and UNIX Panels for All New Users . . . . . . . . . . . . . . . . . . . . . . . . . . . 95

To Set Windows NT and UNIX Options and Attributes for a New User . . . . . . . . . . . . . . . . . . 96

Groups . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 97

To Create a Static Group in the Directory . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 98

To Add Users to the Configuration Administrators Group . . . . . . . . . . . . . . . . . . . . . . . . . . . . 100

To Create a Dynamic Group . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 101

To Create a Certificate Group . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 103

Organizational Units . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 105

To Create a New Organizational Unit . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 105

Modifying Existing Directory Entries . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 106

Updating User and Group Entries . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 106

To Edit a User or Group Entry in the Directory . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 106

To Change a User Password . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 106

To Change the Configuration Administrator’s User Name or Password . . . . . . . . . . . . . . . . . 107

6 Managing Servers with Netscape Console • December 2001

To Change the Administration Server Administrator’s User Name or Password . . . . . . . . . . 108

To Remove a User, Group, or Organizational Unit from the Directory . . . . . . . . . . . . . . . . . . . 108

Part 3 Using Netscape Administration Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 109

Chapter 6 Administration Server Basics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 111

Restarting Administration Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 111

To Restart the Server from Netscape Console . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 112

To Restart the Server from the Command Line . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 112

UNIX . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 112

Windows NT . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 112

To Restart the Server from the NT Control Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 113

Stopping Administration Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 113

To Stop the Server from Netscape Console . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 113

To Stop the Server from the Command Line . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 113

UNIX . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 113

Windows NT . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 113

To Stop the Server from the NT Control Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 114

Logging Options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 114

To View the Access Log . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 115

To View the Error Log . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 115

To Change Where Logs are Stored . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 116

The Netscape Administration Page . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 116

To Access the Administration Page . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 117

Chapter 7 Administration Server Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 119

Network Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 119

To Configure Network Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 120

Access Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 121

To Set Administration Server Access Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 122

Encryption Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 123

To Request and Install a Certificate for Administration Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . 123

To Activate SSL on Administration Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 124

Directory Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 125

The Configuration Directory . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 125

Changing the Host or Port Number . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 126

To Change the Host or Port Number . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 126

The User Directory . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 127

User Directory Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 128

User Authentication and Directory Failover Support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 128

Changing User Directory Settings for a Domain . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 128

To Change the User Directory Settings for a Domain . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 129

To Change User Directory Settings for a Server Group . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 130

Chapter 8 Administration Server Command-Line Tools . . . . . . . . . . . . . . . . . . . . . . . . . . . 133

admconfig . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 133

Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 133

Options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 134

Tasks and Their Arguments . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 135

Examples . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 143

admin_ip.pl. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 143

Usage . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 143

ldapsearch, ldapmodify, and ldapdelete . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 144

sec-activate . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 144

Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 144

Example . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 144

sec-migrate . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 144

Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 145

modutil . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 145

Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 146

Tasks and Options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 146

Usage . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 151

JAR Information File . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 152

JAR Information File Syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 154

Examples of Using modutil . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 159

Part 4 Advanced Server Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 165

Chapter 9 Access Control . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 167

Overview of Access Control . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 167

Examples of Access Control . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 168

Setting Access Permissions For Servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 170

To Set Access Permissions for a Server in the Navigation Tree . . . . . . . . . . . . . . . . . . . . . . . . . . . . 170

Working With Access Control Instructions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 171

What’s in an ACI . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 171

Target . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 171

Permissions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 171

Bind Rules . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 172

Using the ACI Manager and ACI Editor . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 172

To Specify What You Want an ACI to Apply To . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 173

To Create a New ACI with the Visual ACI Editor . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 174

To Create a New ACI with the Manual ACI Editor . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 176

8 Managing Servers with Netscape Console • December 2001

To Edit an Existing ACI with the ACI Editor . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 177

To Remove an ACI . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 178

Chapter 10 Using SSL and TLS with Netscape Servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . 179

The SSL and TLS Protocols . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 179

SSL and TLS Ciphers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 180

Choosing SSL and TLS Ciphers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 180

Preparing to Use SSL and TLS Encryption . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 181

Using External Security Devices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 181

Slots and Security Devices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 181

To Install an External Security Device . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 182

To Remove an External PKCS #11 Module . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 182

Obtaining and Installing a Server Certificate . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 183

SSL Certificates . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 183

Preparing to Set Up SSL and TLS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 184

Setting up SSL or TLS with an Internal Security Device . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 184

Setting up SSL or TLS with an External Security Device . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 184

Setting Up SSL with Internal and External Security Devices . . . . . . . . . . . . . . . . . . . . . . . . . . . . 184

Generating a Server Certificate Request . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 184

To Generate a Certificate Request . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 184

Sending a Server Certificate Request . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 186

To Send a Server Certificate Request as email . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 186

Installing the Certificate . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 187

To Back Up a Certificate . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 187

To Install a Server Certificate . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 187

To Install a CA Certificate or Server Certificate Chain . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 188

Backing Up and Restoring Your Certificate Database . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 189

To Back Up Your Certificate Database . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 189

To Restore Your Certificate Database From a Backup . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 189

Activating SSL . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 190

To Activate SSL on a Netscape Server or a Netscape 4.x Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . 190

Managing Server Certificates . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 192

Renewing a Certificate . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 192

To Check a Certificate Expiration Date . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 192

To Generate a Certificate Renewal Request . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 192

Changing the CA Trust Options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 194

To Change the CA Trust Options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 194

Changing Security Device Passwords . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 194

To Change a Security Device Password . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 195

Managing Certificate Lists . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 195

To Obtain a CRL or CKL From a CA . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 195

To View, Add, or Delete a CRL or CKL . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 196

Using Client Authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 197

How Client Authentication Works . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 197

Preparing to Use Client Authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 198

The certmap.conf File . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 198

DNComps . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 199

FilterComps . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 200

VerifyCert . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 200

CmapLdapAttr . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 201

Library . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 201

InitFn . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 201

Custom Properties . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 201

Editing the certmap.conf File . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 201

To Edit the certmap.conf File . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 202

Example certmap.conf Mappings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 203

Example of a Default Mapping . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 203

Example of an Additional Mapping . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 203

Example of a Mapping with an Attribute Search . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 204

Using Client Authentication Between Servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 204

To Set Up Client Authentication Between Servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 205

Client Authentication for Users . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 206

To Set Up Client Authentication for Users . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 206

Chapter 11 Using SNMP to Monitor Servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 209

SNMP Basics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 209

How SNMP Works . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 211

Netscape MIBs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 211

The Administration Server MIB . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 212

Types of SNMP Messages . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 213

Network Management Station-Initiated Communication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 213

Server-Initiated Communication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 213

Setting Up SNMP on UNIX . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 214

Using a Proxy SNMP Agent on UNIX . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 215

Installing and Starting the Proxy SNMP Agent . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 216

To Install the SNMP Proxy Agent . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 216

To Start the SNMP Proxy Agent . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 216

To Restart the Native Agent . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 217

Reconfiguring a Native Agent on UNIX . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 217

Configuring the Master Agent on UNIX . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 218

Community Strings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 218

Trap Destinations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 218

Configuring the Master Agent using Netscape Console . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 218

To Add, Edit, or Remove a Community String using Netscape Console . . . . . . . . . . . . . . . . . 219

To Add, Edit, or Remove a Trap Destination . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 220

Manually Configuring the Master Agent . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 221

10 Managing Servers with Netscape Console • December 2001

To Configure the Master SNMP Agent Manually . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 221

Editing the Master Agent Config File . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 222

Defining sysContact and sysLocation Variables . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 222

Starting the Master Agent on UNIX . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 223

Starting the Agent Using Netscape Console . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 223

To Start the Master Agent Using Netscape Console . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 223

Starting the Agent from the Command Line . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 224

To Start the Agent on the Standard Port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 224

To Start the Agent on a Non-Standard Port Using the Config File . . . . . . . . . . . . . . . . . . . . . . . 224

To Start the Agent on a Non-Standard Port using System Services . . . . . . . . . . . . . . . . . . . . . . 225

Enabling the Subagent on UNIX . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 225

Using the Windows NT SNMP Service . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 225

To Set Up SNMP on Windows NT . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 225

Part 5 Appendixes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 227

Appendix A Fortezza . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 229

How It Works . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 229

How Fortezza Crypto Cards are Certified . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 230

Fortezza Keys, Certificates, and Encryption . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 230

CRLs and CKLs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 231

Encryption Algorithms . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 231

SKIPJACK . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 231

SSL Protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 231

RC4 Encryption . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 231

NULL Encryption . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 231

Enabling Fortezza . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 231

To Enable Fortezza on Administration Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 232

Appendix B Introduction to Public-Key Cryptography . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 233

Internet Security Issues . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 233

Encryption and Decryption . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 235

Symmetric-Key Encryption . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 236

Public-Key Encryption . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 237

Key Length and Encryption Strength . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 238

Digital Signatures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 239

Certificates and Authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 240

A Certificate Identifies Someone or Something . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 241

Authentication Confirms an Identity . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 242

Password-Based Authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 243

Certificate-Based Authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 244

How Certificates Are Used . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 246

Types of Certificates . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 246

SSL Protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 248

Signed and Encrypted Email . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 248

Form Signing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 249

Single Sign-On . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 249

Object Signing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 250

Contents of a Certificate . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 251

Distinguished Names . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 251

A Typical Certificate . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 252

How CA Certificates Are Used to Establish Trust . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 254

CA Hierarchies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 255

Certificate Chains . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 256

Verifying a Certificate Chain . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 257

Managing Certificates . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 260

Issuing Certificates . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 260

Certificates and the LDAP Directory . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 261

Key Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 261

Renewing and Revoking Certificates . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 262

Registration Authorities . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 263

Appendix C Introduction to SSL . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 265

The SSL Protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 265

Ciphers Used with SSL . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 267

Cipher Suites With RSA Key Exchange . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 268

Fortezza Cipher Suites . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 270

The SSL Handshake . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 272

Server Authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 274

Man-in-the-Middle Attack . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 276

Client Authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 277

Glossary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 281

Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 293

12 Managing Servers with Netscape Console • December 2001

Managing Servers with Netscape Console provides background information that system architects and administrators need to successfully install and manage Netscape servers in their enterprise. Read about Netscape server basics here before you begin installing and configuring servers in your enterprise.

What’s in This Guide

This book provides information you need to use Netscape servers. It is divided into the following parts:

• Part 1, “Overview of Netscape Console”

• Part 2, “Netscape Console Basics”

About This Guide

• Part 3, “Using Netscape Administration Server”

• Part 4, “Advanced Server Management”

• Part 5, “Appendixes”

Conventions Used in This Guide

The following typographical conventions are used in this guide:

Monospaced font

This typeface is used for any text that appears on the computer screen or text that you should type. It’s also used for file, path, and function names.

Boldface

In UI reference material, boldface type identifies window elements such as input areas and checkboxes.

Conventions Used in This Guide

Italic

Italic type is used for emphasis, book titles, glossary terms, and variables.

TIP Tips are useful information that can help you save time.

NOTE Notes mark important information. Make sure you read the

CAUTION Cautions alert you to potentially problematic situations, and tell you

[ ]

Square brackets enclose commands that are optional. You can choose to omit any text that appears in square brackets.

information before continuing with a task.

how to avoid them.

Forward slashes are used to separate directories in a path. If you use the Windows NT operating system, you may be more familiar with paths containing back slashes (\). NT supports both types of slashes; you can use whichever you prefer.

Forward angle brackets are used to indicate menu hierarchies. For example, the text “from the Console menu, choose Security > Manage Certificates” means that you should open the Console menu, select the Security item to open its submenu, and then choose the Manage Certificates item from that submenu.

“Start”

In Windows NT -related sections of this guide, “Start” typically refers to the Windows NT Start menu button. For example, “click Start, and then choose Programs > Netscape Server Products > Netscape Console Version 6.0” means that you should click the Windows NT Start menu button, and then select Programs > Netscape Server Products > Netscape Console Version 6.0.

14 Managing Servers with Netscape Console • December 2001

UNIX

Marks text that applies only to UNIX users.

Marks text that applies only to Windows NT users.

Viewing This Guide Online

For your convenience, this book is also available online. When using any Netscape server software, you can view the online version of Managing Servers with Netscape

Console.

To View This Manual Fro m Netscape Console or Administration Server

1. From the Help menu, choose Contents or press the F1 key.

Viewing This Guide Online

A browser window opens and displays an HTML version of the table of contents for this manual. Click a link to go to a chapter or section.

To View This Manual From Another Product

1. From the server management window’s Help menu, choose Documentation

Resources.

A browser window opens and displays a Documentation Resources page.

2. Click Managing Servers with Netscape Console to view an HTML version of this

manuals’ table of contents. Click a link to go to a chapter or section.

About This Guide 15

Getting Additional Help

The following types of help are available from within Netscape Console:

• Context-sensitive help

• A searchable version of this guide’s index

• A Documentation Resources page with product-related links.

This section shows you how to access these resources.

To Get Context-Sensitive Help

1. Click a Help button.

You will see a browser window with information about the screen you are viewing.

2. If you need further assistance, click one of the following links at the top or

bottom of the screen:

Help Topics and Procedures. This displays a list of all available help topics and procedures for the product you’re working in.

Manual Contents. This displays the table of contents of the manual for the product you’re working in.

Manual Index. This displays the index of the manual for the product you’re working in.

Documentation Resources. This displays the Documentation Resources page, which contains links to documentation for the product you’re using.

To Search this Guide’s Index

1. From the Help menu, choose Search Index.

This opens the Search Index dialog box, an interface used for searching this guide’s index. The text field at the top of the dialog box accepts a search term, the middle frame shows an alphabetical list of all indexed terms, and the bottom frame is used to show topics.

16 Managing Servers with Netscape Console • December 2001

Getting Additional Help

2. Enter a search term in the top field of the search interface.

If the index contains your search term, you will see it highlighted in the alphabetical list. If your search term is not found, the closest match is highlighted.

3. Click the desired topic from the bottom frame.

These topics are links to sections of this guide. Clicking one opens a browser displaying the appropriate section.

4. To dismiss the Search Index dialog box, click Close.

To Open the Product Homepage

• From the Help menu, choose Documentation Resources.

A browser window opens containing a list of Netscape Console-related links. You can also access this page by clicking Documentation Resources from within context-sensitive help.

About This Guide 17

Getting Additional Help

18 Managing Servers with Netscape Console • December 2001

Part 1

Overview of Netscape Console

Chapter 1, “Introducing Netscape Console and Administration

Server”

Chapter 2, “Installing Netscape Servers and Console”

20 Managing Servers with Netscape Console • December 2001

Chapter 1

Introducing Netscape Console and

Administration Server

Netscape Console and Administration Server Version 6.0 are two parts of a system that lets you manage Netscape software and users in your enterprise. This chapter presents a high-level overview of what this system is and how you can use it to work with resources across your network.

In order to run most Netscape software, you must first install Netscape Directory Server. By default, when you do this, Netscape Console and Administration Server are automatically installed for you. Although Netscape Directory Server, Netscape Console, and Netscape Administration Server work tightly with one another, each plays a specific role in the management of servers, applications, and users.

Netscape Directory Server stores server and application configuration settings as well as user information. This data is used by other servers in the enterprise. Typically, application and server configuration information is stored in one subtree of Netscape Directory Server while user and group entries are stored in another subtree. If you have a large enterprise, however, you can store your configuration and user information in separate instances of Directory Server (which can be on the same host machine or on two different host machines). When the terms configuration directory and user directory are used in this guide, they refer to where the configuration information and the user information is stored—either in the subtrees of a single instance of Directory Server or in two separate instances of Directory Server.

Netscape Console is the front-end management application for Netscape software in your enterprise. It finds all servers and applications registered in your configuration directory, displays them in a graphical interface, and lets you manage and configure them. In addition, Netscape Console provides graphical tools for locating and managing entries in the user directory. Figure 1-1 shows Netscape Console’s interface.

Figure 1-1 The Netscape Console Interface

When you log in to Netscape Console, it connects to an instance of Administration Server using the Hypertext Transfer Protocol (HTTP). Administration Server manages requests for all Netscape products installed in a single root folder.

When you install a Netscape product in a new folder, Administration Server is installed for you. If you install additional products in the same folder, they can use the instance of Administration Server that is already there. If a product includes a newer version of Administration Server and Console than the versions in the root folder, the installer updates the folder with the latest versions. Administration Server and Console are backward compatible; all existing Netscape servers will continue to work normally.

The system for managing Netscape products works as follows:

Netscape Console lets you manage resources (servers or applications) as well as add or edit user information. When you use Netscape Console to manage resources, Console sends HTTP requests to the instance of Administration Server that controls the resource. Upon receiving these requests, the instance of

22 Managing Servers with Netscape Console • December 2001

Administration Server executes programs that perform the requested tasks. For example, Administration Server can execute programs to modify the server and application settings that are stored in the configuration directory or to change the port number that a server listens to.

When you use Netscape Console to add or edit user entries, it sends Lightweight Directory Access Protocol (LDAP) messages directly to Directory Server. The information in these messages is then stored in the user directory. Figure 1-2 illustrates the system.

Figure 1-2 A Simple System With Netscape Console

Figure 1-2 shows an example of a relatively simple system. As your enterprise grows and your needs change, you have the flexibility to add additional hosts and servers. Even when you install new hardware and software, you can continue to use a single instance of Netscape Console to manage your network. Figure 1-3 shows how a complex system might be organized.

Chapter 1 Introducing Netscape Console and Administration Server 23

Figure 1-3 A More Complex System With Netscape Console

The rest of this guide shows you how to install and use Netscape Console and Administration Server to manage servers, applications, and users.

If you would like to learn more about how Netscape Console works before installing the product, see “A Tour of Netscape Console” on page 49.

24 Managing Servers with Netscape Console • December 2001

Chapter 2

Installing Netscape Servers and

Console

This chapter provides an overview of the Netscape Server Products Setup program and how it is used in various situations.

This chapter contains the following sections:

• The Setup Program

• Upgrading to Version Version 6.0

• Silent Installation

• Uninstallation

Each Netscape server has its own detailed installation instructions.

The Setup Program

The Netscape Server Products Setup program is for installing Netscape servers all at once or one at a time. Use the Setup program each time you need to do any of the following:

• Install a new server or server component

• Install Netscape Console as a stand-alone application

• Update a server

Installing a New Server

This section provides an overview of installation dependencies and options common to all Netscape servers.

Directory Server Must Be Installed First

In order to install Netscape software, you must first set up Directory Server. When you do this, you create a user ID and password for the Configuration Administrator. During a typical installation, the Setup program checks this user ID and password against the installed directory. If the values do not match, authentication fails, and you can’t complete the installation.

For detailed information on installing the Directory Server, see the server’s documentation.

When you install a Directory Server for the first time, Netscape Administration Server and Console are automatically installed for you.

Administration Server Is Required in Each Server Root

Every Netscape server root must contain an instance of Administration Server. If you are installing a server into a new folder, the Setup program will automatically install Administration Server for you.

NOTE Installing or upgrading Console on Windows NT requires

rebooting the machine at the end of the install process. The option to reboot is offered at the end of the setup program. If you choose not to reboot at the end of the install process you must remember to reboot later, before you use Console.

26 Managing Servers with Netscape Console • December 2001

The Setup Program

Installation Modes

The Setup program offers three installation modes: Express, Typical, and Custom.

Express

Use this mode to get the system running quickly, using default settings as much as possible. This mode was designed for administrators who want to test a server’s basic operation on a particular system before deploying. It automatically generates as much information as possible to complete the most basic installation. Generally, you only need to enter administrator names and passwords during an express installation.

Typical

Use this mode if you want to specify some, but not all, installation options. Administrators often use this mode because it handles the details of server configuration, while still letting them modify settings such as directory location, port numbers, user names, and passwords.

Custom

Use this mode only if you’ve run the installer before, and are familiar with server configuration settings and how to modify them. This mode is most useful to the administrator who routinely installs and upgrades servers, and whose company has already identified special enterprise needs. When using custom mode, you can specify all typical options as well as advanced ones such as the IP address of a host system.

Installing Netscape Console as a Stand-Alone Application

You can install Netscape Console as a stand-alone application on a machine local to you. This is useful when you want to manage servers on remote machines.

To Install Netscape Console as a Stand-Alone Application on UNIX

1. Download the compressed product binaries for Netscape Console.

2. Extract the binaries into a new directory.

3. Run the Setup program by typing setup.

The first installation screen appears.

Chapter 2 Installing Netscape Servers and Console 27

The Setup Program

4. Proceed through the installation process. Here are the prompts you encounter

with instructions about what to do:

Would you like to continue with installation? Enter

Yes

Do you agree to the license terms? Enter Yes

Select the component you want to install. Enter 2 for Netscape Console

Installation location. Enter the path where you want to install Netscape

Console. If the specified folder does not exist, the Setup program will create it for you.

5. Press Enter.

The Setup program installs Netscape Console in the folder you specified.

Once installation completes, you can run Netscape Console by navigating to the folder you specified as the installation location, and then typing

startconsole.

To Install Netscape Console as a Stand-Alone Application on Windows NT

1. Download the compressed product binaries for Netscape Console.

2. Extract the binaries into a new folder and run the setup.exe program.

The installation startup screen appears.

28 Managing Servers with Netscape Console • December 2001

Upgrading to Version Version 6.0

3. Click Next.

4. Proceed through the installation process. Here are the prompts you encounter

with instructions about what to do:

Do you accept all of the terms of the preceding license agreement? Click

Choose the type of Setup you prefer. Select Netscape Console

Installation directory. Enter the location where you want to install Netscape

Console. If this folder does not exist, the Setup program asks if you want to create it.

5. Review your selections. If you need to make any changes, click Back and

modify your choices.

6. Click Install.

The Setup program installs Netscape Console in the specified folder.

7. When the installer completes, click Finish.

Once installation completes, you can run Netscape Console by clicking Start, and then choosing Programs > Netscape Server Products > Netscape Console Version

6.0.

Upgrading to Version Ve rsio n 6. 0

If you already have versions of Netscape Console and Administration Server installed on your system, you can upgrade to Netscape Console Version 6.0. This section contains instructions for performing the following upgrades:

Yes

• Upgrading Administration Server and Console

• Upgrading a Stand-Alone Console.

NOTE The instructions presented in this section apply only when

upgrading Netscape Administration Server and Console. If you want to upgrade a different Netscape product, please refer to the installation instructions for the upgraded version of that product.

Chapter 2 Installing Netscape Servers and Console 29

Upgrading to Version Version 6.0

Upgrading Administration Server and Console

To upgrade Netscape Administration Server and Console to Netscape Administration Server and Console Version 6.0, follow the directions for your operating system.

To Upgrade on UNIX

1. Download the compressed product binaries for Netscape Administration

Server and Console.

2. Extract the binaries into a new folder.

3. Run the Setup program by typing setup.

The first installation screen appears.

4. Proceed through the installation process. Here are the prompts you encounter

with instructions about what to do:

Would you like to continue with installation? Press Enter for Yes

Do you agree to the license terms? Enter

Yes

Select the component you want to install Enter 1 for Netscape Servers

Choose an installation type Enter

2 for Typical

Installation location Enter the location where Administration Server is currently installed.

If Administration Server was installed with another Netscape server, enter the path to that product’s server root. For example, if you installed Netscape Directory Server 4.1 in the

/usr/netscape/server4 as your installation location.

enter

/usr/netscape/server4 folder, then you would

Specify the components you wish to install Press Enter (for All)

(Core Components) Specify the components you wish to install Choose all

three core components by entering

1, 2, 3.

(Administration Services) Specify the components you wish to install Choose both components by entering

1,2

Computer name Enter the fully qualified hostname of your computer. For example,

eastcoast.example.com.

System User Enter the user ID that Netscape Administration Server is currently running as. The server will continue to run as this user.

30 Managing Servers with Netscape Console • December 2001

+ 272 hidden pages

Redhat NETSCAPE CONSOLE User Manual

Specifications and Main Features

Frequently Asked Questions

User Manual

What’s in This Guide

About This Guide

Conventions Used in This Guide

Viewing This Guide Online

To View This Manual Fro m Netscape Console or Administration Server

To View This Manual From Another Product

Getting Additional Help

To Get Context-Sensitive Help

To Search this Guide’s Index

To Open the Product Homepage

Overview of Netscape Console

The Setup Program

Installing a New Server

Installation Modes

Installing Netscape Console as a Stand-Alone Application

Upgrading to Version Version 6.0

Upgrading Administration Server and Console