Chapter 6. Using SSL/TLS with Red Hat Management Console
2. Create a password file named password.conf The file should include a line with the token name and password, in the form token:password For example:
internal:secret
For the NSS software crypto module (the default software database), the token is always called
internal.
The password file should be owned by the Admin Server user and set to read-only by the Admin Server user, with no access to any other user (mode 0400).
NOTE
To find out what the Admin Server user ID is, run grep in the Admin Server configuration directory:
cd /etc/dirsrv/admin-serv grep \^User console.conf
3. In the /etc/dirsrv/admin-serv directory, edit the nss.conf file to point to the location of the new password file.
# Pass Phrase Dialog:
# Configure the pass phrase gathering process.
# The filtering dialog program (`builtin' is a internal # terminal dialog) has to provide the pass phrase on stdout. NSSPassPhraseDialog file://etc/dirsrv/admin-serv/password.conf
4. Restart the Admin Server.
service dirsrv-admin restart
Index
A
Access Control
- to navigation tree, Granting Admin Privileges to Users for Directory Server and Admin Server
admin domain
- creating, Creating and Editing an Admin Domain
administration domain
- defined, The Servers and Applications Tab - removing, Removing an Admin Domain
Administration Server
- defined, Overview of Red Hat Console
Administration Server Administrator
[1] Fo r Red Hat Directo ry Server, the Directo ry Server and Ad min Server are the TLS servers, and the Red Hat Manag ement Co nso le o r a user thro ug h LDAP to o ls o r b ro wsers are the TLS client.
- changing user name or password for, Changing the Admin Password - defined, Changing Administrator Entries
administrators, overview of, Changing Administrator Entries
C
certificate
- password, Creating a Password File for the Directory Server
certificate group, Groups
Configuration Administrator
- changing user name or password for, Changing Administrator Entries - defined, Changing Administrator Entries
Configuration Administrators group
- adding users to, Adding Users to the Configuration Administrators Group
configuration directory
- defined, Overview of Red Hat Console
custom views, Changing the Console Appearance - changing to, Switching to a Custom View - creating, Creating Custom Views
- editing, Creating Custom Views - removing, Creating Custom Views
- setting ACIs on, Setting Access Permissions for a Public View - using, Working with Custom Views
D
deleting
- Directory Server instance, Deleting a Directory Server Instance
digital signatures, Overview of SSL/TLS
directory
- changing the search directory, Searching for Users and Groups
directory entries
- creating, Creating Directory Entries
- removing, Removing an Entry from the Directory - searching for, Searching for Users and Groups
- configuration subtree, Overview of Red Hat Console - deleting instance, Deleting a Directory Server Instance
- role in managing resources and users, Overview of Red Hat Console - user subtree, Overview of Red Hat Console
Directory Server Console
- managing certificates, Managing Certificates Used by the Directory Server Console
dynamic group, Groups
E
encryption, Overview of SSL/TLS
F
fonts
- changing, Changing Console Fonts
G
groups
- creating, Groups - editing, Editing Entries
- locating, Searching for Users and Groups - removing, Removing an Entry from the Directory - types, Groups
H
host information, modifying, Editing Domain, Host, Server Group, and Instance Information
L
logging into Console
- logging in, Launching the Console
M
management window
- opening for Directory or Admin Server, Opening a Directory or Admin Server Window
menus, in Red Hat Management Console, Red Hat Management Console Menus
N
navigation tree
- overview, The Servers and Applications Tab
- setting access permissions to, Granting Admin Privileges to Users for Directory Server and Admin Server
O
organizational units
- creating, Organizational Units
- removing, Removing an Entry from the Directory
P
password
- changing for a user or administrator, Editing Entries
password file
- Admin Server, Creating a Password File for the Admin Server - SSL certificate, Creating a Password File for the Directory Server
passwords
- certificate, Creating a Password File for the Directory Server
preferences, Changing the Console Appearance - font, Changing Console Fonts
- UI permissions, Changing the Console Appearance
R
Red Hat Console
- overview of, Overview of Red Hat Console
Red Hat Management Console
- defined, Overview of Red Hat Console
- information panel, The Servers and Applications Tab - logging into, Launching the Console
- menus, Red Hat Management Console Menus - tabs, Red Hat Management Console Tabs
S
searching
- changing the search directory, Searching for Users and Groups - for directory entries, Searching for Users and Groups
- defined, The Servers and Applications Tab
- opening a management window for, Opening a Directory or Admin Server Window
server group
- defined, The Servers and Applications Tab
- modifying information for, Editing Domain, Host, Server Group, and Instance Information
server instance
- creating, Creating a New Directory Server Instance
- modifying information for, Editing Domain, Host, Server Group, and Instance Information
SSL, Overview of SSL/TLS
- Admin Server password file, Creating a Password File for the Admin Server
- CA certificate error messages, Managing Certificates Used by the Directory Server Console
- certificate password, Creating a Password File for the Directory Server
- managing certificates for the Directory Server Console, Managing Certificates Used by the Directory Server Console
static group, Groups
synchronization options
- enabling, Allowing Sync Attributes for Entries - overview, Allowing Sync Attributes for Entries
T
tables
- changing column position in, Reordering Table Columns
tabs, in Red Hat Management Console, Red Hat Management Console Tabs
TLS, Overview of SSL/TLS
topology
- defined, The Servers and Applications Tab
U
user entries
- changing passwords for, Editing Entries - creating, Directory and Administrative Users - editing, Editing Entries
- locating, Searching for Users and Groups - removing, Removing an Entry from the Directory
Users and Groups tab, changing the search directory for, Searching for Users and