Novell International Cryptography Infrastructure (NICI) is a cross-platform, policy-driven, independently certified, and extensible cryptography service. NICI is the cryptography module that provides keys, algorithms, various key storage and usage mechanisms, and a large-scale key management system.
NICI controls the introduction of algorithms and the generation and use of keys. NICI allows a single commodity version of security products to be produced for worldwide consumption that supports strong cryptography and multiple cryptographic technologies. Initial services built on this infrastructure are Directory Services (NetIQ eDirectory), NetIQ Modular Authentication Service (NMAS), NetIQ Certificate Server, and NetIQ SecretStore.
This document helps you to understand and administrator the NICI services which are used by various Novell, NetIQ, or third-party products. A particular product might use NICI directly or indirectly via another module (DLL, .so).
NICI 3.0 (64-bit) is Federal Information Processing Standards (FIPS) 140-2 Inside validated to meet the security requirements of U.S. Federal agencies and customers with highly secure environments.
WARNING:Many actions described in the document could potentially cause unrecoverable data loss and must be executed with the full knowledge of such an action. Most NICI problems, as well as solutions, have implications in other products. It might not be easy to predict the effects of taking a NICI action. NICI is one of the most critical services in the system, If certain NICI keys are irrecoverably lost, even backed-up data might be useless, because it can’t be decrypted without the corresponding key.
All information is advisory. The contents of this document do not guarantee a fix.