Creating certificates for apache, Customizing your liberty idp user interface – Novell eBook Reader User Manual

Page 34

Advertising
background image

30

Liberty Identity Provider for Novell eDirectory

Novell Confidential

04secure.fm last saved 4/14/03

Manual

Version: 3/17/03

103

3b

Select the Manage Sites task, then select your site’s link.

3c

Change the Base URL Protocol from http to https.

4

Restart Tomcat and Apache for the changes to take effect.

Creating Certificates for Apache

The following steps are provided as an example for how to create two certificates for Apache:

1

Using a DOS prompt, go to your Apache bin directory. (The default location is C:\Program
Files\Novell\Apache\bin.)

This is where the openssl.exe file is located.

2

Create a key file using the following command:

openssl genrsa -out myssl.key 1024

3

Create a signing request file using the following command:

openssl req -new -config openssl.cnf -key myssl.key -out

myssl.csr

4

Send the .csr file to a well-known certificate authority for signing, or self-sign the certificate
using the following command:

openssl x509 -req -days 30 -in myssl.csr -signkey myssl.key -

out myssl.crt

You should now have two (if you are creating a self-signed certificate) or three (if creating a
certificate which is signed by a well-known certificate authority) files: myssl.key, myssl.crt,
and possibly trustedroot.crt.

5

Copy the two or three files to your Apache\conf\ssl directory. (The default location is:
C:\Program Files\Novell\Apache\conf\ssl.)

6

Repeat steps 1-5 to create the same two or three files for the common domain
(mycommonssl.key, mycommonssl.crt, and trustedroot.crt). If they are signed by the same
certificate authority, the trusted root certificate is the same as the one you created for myssl.crt.

7

Modify your Apache configuration files. For examples of how to do this, see

“Modifying the

Apache Configuration Files” on page 39

.

Customizing Your Liberty IDP User Interface

Before putting your Liberty IDP into a production mode, you should modify the look and feel of
your IDP to your own standard, including your company logo, etc. You do this by modifying the
.jsp files that are located in a subdirectory of the application directory you set up during the IDP
installation. For example, if you accepted the installation default directory, the .jsp files would be
located at C:\Program Files\Novell\Tomcat\webapps\nidp\jsp.

The following table is a list of the JSP files that are available for the IDP:

Table 1

JSP Files for the IDP

File Name

Definition

login.jsp

Prompts the user to log in.

Advertising
Popular Brands
Popular manuals