3.6 Additional Components to Set Up

Novell Certificate Server includes some additional components that can be set up to provide additional functionality.

3.6.1 Creating a User Certificate

  1. Launch iManager.

  2. Log in to the eDirectory tree as an administrator with the appropriate rights.

    To view the appropriate rights for this task, see Section B.0, Entry Rights Needed to Perform Tasks.

  3. On the Roles and Tasks menu, click Novell Certificate Server > Create User Certificate.

    This opens a wizard that helps you create the user certificate. Follow the prompts to create the object. For specific information on the wizard pages, click Help.

3.6.2 Creating a Trusted Root Container

You can create a Trusted Root container anywhere in the eDirectory tree.

  1. Launch iManager.

  2. Log in to the eDirectory tree as an administrator with the appropriate rights.

    To view the appropriate rights for this task, see Section B.0, Entry Rights Needed to Perform Tasks.

  3. On the Roles and Tasks menu, click Novell Certificate Server > Create Trusted Root Container.

  4. Specify a name for the Trusted Root container.

  5. Browse and select the context for the Trusted Root container.

  6. Click OK.

NOTE:Different applications might require that the Trusted Root container be given a specific name and be in a specific location in the eDirectory tree. Novell Certificate Server requires that the Trusted Root container be named Trusted Roots and be located in the Security container. The certificates in this container are used to validate user certificates signed by external CAs and intermediate CA certificates stored in Trusted Root objects. Server certificates and the Organizational CA's certificates use the certificate chain stored in their own objects.

3.6.3 Creating a Trusted Root Object

A Trusted Root object can only reside in a Trusted Root container.

  1. Launch iManager.

  2. Log in to the eDirectory tree as an administrator with the appropriate rights.

    To view the appropriate rights for this task, see Section B.0, Entry Rights Needed to Perform Tasks.

  3. On the Roles and Tasks menu, click Novell Certificate Server > Create Trusted Root.

    This opens the Create a Trusted Root Object Wizard that helps you create the Trusted Root object. Follow the prompts to create the object. For specific information on the wizard pages, click Help.

NOTE:Any type of certificate can be stored in a Trusted Root object (CA certificates, intermediate CA certificates, or user certificates).

3.6.4 Creating an SAS Service Object

The SAS Service object is automatically created as part of the server health check. You should not need to create it manually. If you need to create it manually, use the following procedure:

  1. Launch iManager.

  2. Log in to the eDirectory tree as an administrator with the appropriate rights.

    To view the appropriate rights for this task, see Section B.0, Entry Rights Needed to Perform Tasks.

  3. On the Roles and Tasks menu, click Novell Certificate Server > Create SAS Service Object.

    This opens the Create a SAS Service Object Wizard that helps you create the SAS Service object. Follow the prompts to create the object. For specific information on the wizard pages, click Help.