You need to know the following information before running the Inter-Server Communications Security Installation Wizard:
TCP/IP address or DNS name of the machine running iManager
Port used by the Certificate Authority
This is the port number to use when communicating with iManager. If SSL is used, the port number is most likely 443. If you are not using SSL, use port 80 if Tomcat is integrated with a Web server, or 8080 if not.
Username and password for accessing iManager
This allows access to the Certificate Authority server’s signing functionality. If authentication fails, this user cannot continue with the inter-server communications security installation.
TCP/IP addresses or DNS names of all servers where you want to use inter-server communications security
You only need to sign the certificates for servers where you send encrypted Distributions.
IMPORTANT:For NetWare® servers, DNS names cannot have underscores. We recommend that you use dashes instead of underscores as word separators.
During installation you have three methods for obtaining valid IP addresses, one of which you can also use for obtaining DNS names. You can use one or all three of these methods to select your servers. The methods are:
List: Allows you to enter individual IP addresses or DNS names of servers where you want certificates signed, or a filename containing valid IP addresses or DNS names of the servers.
Wildcard: You can build a list of servers using wildcard characters. The asterisk (*) represents numbers from 0 - 999 in any IP address field, and the question mark (?) represents 0 - 9 in a single IP address number position within a field.
Range: You can build a list of servers using an IP address range.
More detail on using these options is provided in the installation steps.
IMPORTANT:The Inter-Server Communications Security Installation Wizard does not attempt to check whether any IP addresses you enter are valid. The wizard only builds a list of addresses for use when the wizard subsequently signs certificates for each machine matching an IP address. If an IP address is invalid (not accessible by the workstation you are using), an error is given for that IP address. You must know which addresses are valid to prevent receiving certificate signing errors. The installation program gives you an option to stop and resolve the connection problem, or to just write the errors to an installation log so that you can review them later.
The installation program gives you an option to stop and resolve the connection problem, or to just write the errors to an installation log so that you can review them later. Therefore, you shoujld not run this installation unattended.
Continue with Section G.3, Install Inter‑Server Communications Security.