NWPKI is the original Novell Certificate Server Library for C API developed to enable public key management solutions on applications that require a Novell Client. NWPKI functions only on the Novell NetWare 5.0, 5.1 and 6, and Microsoft* Windows NT/2000/XP platforms.
Although Novell will continue to provide short term NWPKI API support, it is recommended that developers begin using either NPKI or NPKIT API libraries. Both of these new libraries eliminate the dependency upon the Novell Client and expand the array of platforms for which security services can be implemented as described below.
IMPORTANT:With the introduction of new Certificate Server APIs, the NWPKI API library will soon be deprecated.
The NPKI (Novell Certificate Server Version 2) and NPKIT (Novell Public Key Infrastructure Toolbox) APIs operate together to provide the same functionality as the old NWPKI API, but eliminate its dependency upon the Novell client. In other words, neither NPKI nor NPKIT require the Novell client.
The old functionary provided by NWPKI, which is not dependant on a directory service, has been moved to the NPKIT library, while the directory-dependant functionality can be found in the NPKI library. The new function names (prefaced by NPKI and NPKIT) allow the newer API version to run on the same machine as the old version for backward compatibility. In addition, both libraries have new functionality and enhanced capabilities as described in Table 1.
The new Certificate Server functions should be used by all new applications, as well as existing applications using any of the new functionality. The new Certificate Server functionality runs only on the same platforms as eDirectory 8.7 (see Novell eDirectory 8.7 System Requirements).
NOTE:Existing programs will retain backward compatibility.
Other changes resulting from the introduction of the NPKI and NPKIT APIs include:
IMPORTANT:Both NPKI and NPKIT APIs should be downloaded and enabled together to obtain full Certificate Server functionality.
The NDK: Novell Certificate Server Classes for Java (Early Access) (JPKI) enable you to access the Certificate Server API directly from their Java programs. This API provides a JNI interface to the native Certificate Server API. The native API is supported on all eDirectory platforms.
All Novell Certificate Server APIs require the cryptography services of Novell International Cryptographic Infrastructure (NICI). NICI is the underlying cryptographic infrastructure that provides the cryptography for Novell Certificate Server and other Novell applications.
WARNING:Novell Certificate Server will not function if cryptography services are not fully installed.
To determine the current version of NICI that should be used to implement Certificate Server for your solutions, see the Dependencies section in Table 1.
NICI availability and cryptography strength is restricted if your network is located in an entity listed on the U.S. Government Restricted Party List or in a country with import controls on cryptography products or technologies.
For details about setting up, managing, and troubleshooting NICI, see the NICI Administration Guide.