2.4 Installing the SecretStore Client on Workstations

If the product that you’re installing SecretStore for doesn’t include the SecretStore client components in its installation, you might need to use the SecretStore client installation described in this section.

2.4.1 Workstation Requirements

  • A Windows XP/Vista 32-bit or 64-bit workstation used exclusively as a client workstation.

    You need to install the latest version of NICI on the workstation if it is not already present. You can download this product from the Novell Download Web site.

  • Supervisor rights to the NDS or eDirectory tree

    This requirement only applies to administrative workstations.

2.4.2 Components

You can administer SecretStore from your workstation by installing the following components there:

  • SecretStore client

  • NICI client

  • iManager

  • The SecretStore plug-in to iManager

    Consider the following guidelines concerning users:

    • To prevent users from getting prompted for passwords, don’t install NMAS™ on users' workstations.

    • Use Novell ZENworks® to distribute SecretStore to users' workstations.

Installing the SecretStore Plug-In to iManager

You administer SecretStore through iManager and the SecretStore plug-in to iManager.

To install the SecretStore plug-in to iManager:

  1. In iManager, in the Configure view, click iManager Server > Configure iManager.

  2. Click Plug-in Download.

  3. Ensure the Query Novell download site for new Novell Plug-in Modules (NPM) option is selected.

  4. Select Show every available Novell Plug-in Module (NPM), then click Save > Close.

  5. In the Configure view, click Plug-in Installation > Available Novell Plug-in Modules.

    A list of available Novell plug-in modules is displayed. For example, the iManager 2.7 SecretStore plugin Novell Identity Manager - Secret Store Administr

  6. Select the SecretStore plug-in, then click Install.

  7. Follow the on-screen instructions.

Installing the SecretStore Client

SecretStore supports several products. You can adapt the following steps to your product:

  1. Download the client install from the Novell NDK Web site.

    NOTE:The client is available for Windows only.

  2. Run the platform relative msi file from the download directory.

  3. Follow the on-screen prompts.

The SecretStore client still delivers a copy of the legacy client nwsso.dll for backward compatibility with existing applications and connectors. You can download the latest copy of this file from the Novell Developer Kit Web site. This legacy client operates in parallel with the new SecretStore client on the same workstation.

Client32™ and NMAS installations automatically install nwsso.dll. However, if you need to manually install nwsso.dll, place it in the Windows\System32 directory.

SecretStore Diagnostic Logging

Nwsso.dll also has been retrofitted to provide diagnostic logging for troubleshooting problems. The following registry key files allow the user to enable and disable logging by double-clicking on the file from Windows Explorer:

  • EnableNWSSOLogger.reg

  • DisableNWSSOLogger.reg

Enabling logging produces an nwsso.log file at the root of the current working directory (that is, from where the SecretStore client application is using the nwsso.dll file). New entries are added to the existing log until the file is deleted (resulting in the start of a new file) or upon disabling the logging feature.

The SecretStore client also can produce diagnostic logs similar to the legacy client by using the following registry key files:

  • Nsss.dll high-level client logging:

    • Enable NSSSLogger.reg

    • Disable NSSSLogger.reg

  • Nssncp.dll lower-level client NCP™ protocol logging:

    • Enable NSSNCPLogger.reg

    • Disable NSSNCPLogger.reg

  • Nssldp.dll lower-level client LDAP protocol logging:

    • Enable NSSLDPLogger.reg

    • Disable NSSLDPLogger.reg