Novell Certificate Server includes some additional components that can be set up to provide additional functionality.
To create a user certificate using ConsoleOne:
Log in to the eDirectory tree as an administrator with the appropriate rights. To view the appropriate rights for this task, see Entry Rights Needed to Perform Tasks.
Start ConsoleOne.
Double-click the User object that will host the user certificate.
Click the Security tab > Certificates.
Click Create.
This opens a wizard that helps you create the user certificate. Follow the prompts to create the object. For specific information on the wizard pages, click Help.
To create a user certificate using Novell iManager:
Launch Novell iManager.
Log in to the eDirectory tree as an administrator with the appropriate rights.
To view the appropriate rights for this task, see Entry Rights Needed to Perform Tasks.
From the Roles and Tasks menu, click Novell Certificate Server > Create User Certificate.
This opens a wizard that helps you create the user certificate. Follow the prompts to create the object. For specific information on the wizard pages, click Help.
You can create a Trusted Root container anywhere in the eDirectory tree.
Log in to the eDirectory tree as an administrator with the appropriate rights.
To view the appropriate rights for this task, see Entry Rights Needed to Perform Tasks.
Start ConsoleOne.
Right-click the container you want to create the Trusted Root container in, then click New > Object.
From the list box in the New Object dialog box, double-click NDSPKI:Trusted Root.
This opens a wizard that helps you create the Trusted Root container. Follow the prompts to create the object. For specific information on the wizard pages, click Help.
NOTE: Different applications might require that the Trusted Root container be given a specific name and be in a specific location in the eDirectory tree. Novell Certificate Server requires that the Trusted Root container be named Trusted Roots and be located in the Security container. The certificates in this container are used to validate user certificates signed by external CAs and intermediate CA certificates stored in Trusted Root objects. Server certificates and the Organizational CA's certificates use the certificate chain stored in their own objects.
A Trusted Root object can only reside in a Trusted Root Container.
To create Trusted Root objects using ConsoleOne:
Log in to the eDirectory tree as an administrator with the appropriate rights.
To view the appropriate rights for this task, see Entry Rights Needed to Perform Tasks.
Start ConsoleOne.
Open the Security container.
Right-click the Trusted Root Container object, then click New > Object.
From the list box in the New Object dialog box, double-click NDSPKI:Trusted Root Object.
This opens the Create a Trusted Root Object Wizard that helps you create the trusted root object. Follow the prompts to create the object. For specific information on the wizard pages, click Help.
To create Trusted Root objects using Novell iManager:
Launch Novell iManager.
Log in to the eDirectory tree as an administrator with the appropriate rights.
To view the appropriate rights for this task, see Entry Rights Needed to Perform Tasks.
From the Roles and Tasks menu, click Novell Certificate Server > Create Trusted Root.
This opens the Create a Trusted Root Object wizard that helps you create the trusted root object. Follow the prompts to create the object. For specific information on the wizard pages, click Help.
NOTE: Any type of certificate can be stored in a Trusted Root object (CA certificates, intermediate CA certificates, or user certificates).
To create a SAS Service object using Novell iManager:
Launch Novell iManager.
Log in to the eDirectory tree as an administrator with the appropriate rights.
To view the appropriate rights for this task, see Entry Rights Needed to Perform Tasks.
From the Roles and Tasks menu, click Novell Certificate Server > Create SAS Service Object.
This opens the Create a SAS Service Object Wizard that helps you create the SAS Service Object. Follow the prompts to create the object. For specific information on the wizard pages, click Help.