Home Contact Us

 
 

Comtrust Support: Server Certificate: IPlanet Web Server

Introduction
Configuring iPlanet Web Server


 

Introduction:

This document explains the CSR generation and server certificate installation procedures for working with iPlanet Web Server. The document focuses on setting up and installing the components which are necessary to secure your iPlanet web server.

There are some procedures which are required to activate the SSL protocol for the Web Server, this procedures can be categorize into the following sections:

  • Creating a New Server Instance
  • Creating a Certificate Trust Database
  • Requesting a Certificate
  • Installing Certificates
  • Activating SSL

Before proceeding with procedures following information should be available:

  • Requestor name:
  • Telephone number:
  • Common name:
  • Email address:
  • Organization:
  • Organizational Unit:
  • Locality:
  • State or Province:
  • Country:

TOP

Configuring iPlanet Web Server:

  • Creating a New Server Instance:

      There are two options here:

    1. If it is required to enable SSL for all the pages on the web serve,r ignore this step.

    2. If it is required to enable SSL on some of the pages, we have to create New Server Instance with the same Domain name and root Directory BUT the server port will be 443.



  • Creating a Certificate Trust Database:

    1. Access the Administration Server and choose the Security tab.
    2. Type the password in Database Password.
    3. Re-type the password in Password (again).
    4. Click OK.


  • Requesting a Certificate:

    1. Access the Administration Server and choose the Security tab.
    2. Click the Request Certificate link.
    3. Check new certificate
    4. Check CA Email and enter the email address for Comtrust Contact person.

    5. Type the password for your key-pair file. This is the SAME password you specified when you created the trust database.

      The CSR is submitted (including the BEGIN NEW CERTIFICATE REQUEST and END NEW CERTIFICATE REQUEST statements) to Comtrust while applying for the server certificate at http://www.comtrust.co.ae/PKIForms/serverenroll.htm. A reference number is provided for downloading the approved certificate.

      The approved certificate can be downloaded at http://www.comtrust.co.ae/pkiforms/serverdownload.htm by putting in the reference number as provided at the time of applying for the certificate. A text file will be generated and displayed in the browser as under.

    Note: The text file will include four certificates, save each certificate in separate text file with the following names:

    1. CTCA.txt : Comtrust Server Certificate Authority
    2. CTROOTCA.txt : Comtrust Root Certificate Authority
    3. GTEROOT.txt : GTE CyberTrust Root
    4. abc.txt : abc is the customer certificate which can be named anything.


  • Installing Certificates:

    1. Access the Administration Server and choose the Security tab.
    2. Click the Install Certificate link.
    3. Check the type of certificate you are installing: (each certificate will installed separately)

      • This Server is for : abc.txt
      • Server Certificate Chain is for : CTROOTCA.txt and CTCA.txt
      • Trusted Certificate Authority (CA) is for : GTEROOT.txt


    4. Type the password for your key-pair file.
    5. Check Message text (with headers): Be sure to include the headers "Begin Certificate" and "End Certificate" including the beginning and ending hypens. And make sure there is no empty lines in the end of the certificate
    6. Click OK.
    7. Click Add.


  • Activating SSL:

    1. Access the Administration Server and choose the Preferences tab.
    2. Click the Encryption On/Off link.
    3. Make the desired changes and click OK.

 

For more info on our products please email us at info@comtrust.ae

 

 
Home  |  Quality Policy  |  Privacy Policy  |  Jobs  |  Contact Us
©2004 Comtrust. All Rights Reserved