Root Certificates and ISO Object Relationship
Novell Cool Solutions: Question & Answer
Reader Rating 
Q:
KO wrote: In iChain 2.1, you put the root certificate of the CA for the back-end server in each accelerator. In 2.2, this is apparently not the case; the root certificate is somehow linked to the ISO object, and it is not clear in the administrator's guide how this relationship is supposed to work.
A:
With iChain 2.2, the ISO object has an attribute (iChainTrstedRootCOntainer) that points to a trusted root container where all trusted root certs are copied. When the proxy loads, it reads all the trusted (and intermediate) certs from this container, copies them to the sys:\system\troots directory, and uses them to validate any certs that it receives from secure remote LDAP or Web servers.
Novell Cool Solutions (corporate web communities) are produced by WebWise Solutions. www.webwiseone.com