![]() |
Sun Java System Identity Server version 2004Q2 |
This file explains how to compile and run a sample CertLogin application for Solaris & Windows installations. Follow these steps to run the sample program.CertLogin Samples Readme File
AMConfig.properties
from IS server installation machine
location <ISinstall-dir>/SUNWam/lib
from the server
machine to the client machine
am_services.jar
, am_sdk.jar
, jss3.jar
,
AMConfig.properties
in your classpath on client machine. (Note: Include jaas.jar in your classpath if you are using JDK version less than JDK1.4)
<install-dir>/SUNWam/locale
from the server machine to the
client machine
gmake run
DOMAIN="dc=example,dc=com" CERTNICKNAME="tester's cert"
URL="dc=example,dc=com" PASSWORD=password
/etc/opt/SUNWam/config/AMConfig.properties
from IS server installation machine
to the client machine.
am_services.jar
, am_sdk.jar
,
jss3.jar
, AMConfig.properties
in your classpath on
client machine. (Note: Include jaas.jar in your classpath if you are using JDK version less than JDK1.4)
<install-dir>/SUNWam/locale
from the server machine to the
client machine
make run
DOMAIN="dc=example,dc=com" CERTNICKNAME="tester's cert"
URL="dc=example,dc=com" PASSWORD=password
Your sample program should display "LOGIN SUCCESS"
For SSL client auth setup
AMConfig.properties
file
com.iplanet.am.admin.cli.certdb.dir=<ISinstall-dir>/SUN/IdentityServer6/Servers/alias
com.iplanet.am.admin.cli.certdb.prefix=https-machine1.red.iplanet.com-machine1-
<ISinstall-dir>/SUN/IdentityServer6/Servers/alias
https-machine1.red.iplanet.com-machine1-
Using certutil for client certificate management:
Certutil is a command-line utility that can create and modify cert7.db
and key3.db
database files. It can also list, generate, modify, or
delete certificates within the cert7.db
file and create or change
the password, generate new public and private key pairs, display the contents
of the key database, or delete key pairs within the key3.db
file.
The key and certificate management process generally begins with creating keys
in the key database, then generating and managing certificates in the
certificate database. For more information about this tool, please
reference Using
the Certificate Database Tool