- Download network security services (ftp://mozilla.org/pub/mozilla.org/nss/releases/). For Windows, download nss-3.11.4.zip package in the the NSS_3_11_4_RTM/msvc6.0/WINNT5.0_OPT.OBJ/ folder. Extract the contents to C:\Apps\nss-3.11.4\
- Download the latest Netscape Portable Runtime (NPR) from the Mozilla FTP site: (http://ftp.mozilla.org/pub/mozilla.org/nspr/releases/). For Windows, download nspr-4.6.zip package in the v4.6/WINNT5.0_OPT.OBJ/ folder. Extract contents to C:\Apps\nspr-4.6\
- Add the NSS tools bin/ and lib/, and the NSPR lib/ directories to the system path.
- Create the certificate database files
C:\Projects\CodeSigning\> certutil -N -d .
C:\Projects\CodeSigning\> certutil -N - d C:\certdatabase
The dot (.) will cause the database to be created in the current directory. NSS creates the required certificate database files: cert7.db, key3.db and sec mod.db
certutil -A -n alias -t trust_arguments -i root_CA_path -d certificate_database_directory
6. Add the server certificates to the certificate database
certutil -A -n alias -t trust_arguments i root_CA_path -d certificate_database_directory
7. List the certificates in the certificate database
certutil -L -d certificate_database_directory
8. Configure the user directory for SSL
9. Point the policy server to the certificate database
No comments:
Post a Comment