Introduction

Novell® International Cryptography Infrastructure (NICI) is Novell's solution to a cross-platform, policy-driven, independently certified, and extensible cryptography service. NICI is the cryptography module that provides keys, algorithms, various key storage and usage mechanisms, and a large-scale key management system.

NICI controls the introduction of algorithms and the generation and use of keys. NICI allows a single commodity version of security products to be produced for worldwide consumption that supports strong cryptography and multiple cryptographic technologies. Initial services built on this infrastructure are Directory Services (Novell eDirectoryTM), Novell Modular Authentication Service (NMASTM), Novell Certificate ServerTM, Novell SecretStore®, and TLS/SSL.

NICI first shipped with NetWare® 5.0. This document is provided to help resolve NICI issues found in the field or during testing of various Novell or third-party products. A particular product may use NICI directly or indirectly via another module (NLMTM, DLL, so, etc.).

WARNING:  

All actions described here can cause unrecoverable data loss and must be executed with the full knowledge of such an action. Most NICI problems, as well as solutions, have implications in other products. It might not be easy to predict the effects of taking a NICI action. NICI is one of the most critical services in the system and if it is inoperable, it typically renders the system inoperable, as well as causing permanent and unrecoverable damage. If certain NICI keys are irrecoverably lost, even backed-up data might be useless, because it can't be decrypted.

The contents of this document do not guarantee a fix. All information is advisory.


Table 1 NICI Configuration Directory

Platform Startup Directory NICI Directory NICI User Directory

NetWare

c:\nwserver

sys:\system\nici

sys:\system\nici

Microsoft* Windows*

%SystemRoot%\System32

%SystemRoot%\System32\Novell\NICI(See NICI Setup)

%SYSTEMROOT%\System32\Novell\NICI(See NICI Setup)

UNIX*

/usr/lib

/var/novell/nici(See NICI Setup)

/var/novell/nici/(See NICI Setup)