134
Sentinel Log Manager 1.0.0.4 Administration Guide
no
vd
ocx
(e
n)
19
Fe
bru
a
ry
20
10
Use SSL/TLS (secured or
non-secured LDAP
connection port )
Enter one of the following:
y
to use the secured connection port and perform the below
steps:
1. Login as the
root
user.
2. Export the self-signed certificate of the Certificate Authority
(CA) for the eDirectory/Active Directory tree to a Base64-
encoded file.
eDirectory:
For exporting an eDirectory CA certificate in
iManager, the Novell Certificate Server plug-ins for
iManager must be installed. For more information on
installing an iManager plug-in, see
Downloading and
Installing Plug-in Modules (http://www.novell.com/
documentation/imanager27/imanager_admin_273/?page=/
documentation/imanager27/imanager_admin_273/data/
hk42s9ot.html)
.
For more information on exporting an eDirectory CA
certificate, see
Exporting an Organizational CA's Self-
Signed Certificate (http://www.novell.com/documentation/
edir88/edir88/?page=/documentation/edir88/edir88/data/
a7elxuq.html)
.
Active Directory:
For more information on exporting an
Active Directory CA certificate, see
How to enable LDAP
over SSL (http://support.microsoft.com/kb/321051)
.
For the Sentinel LDAP authentication, the ANONYMOUS
LOGON user object must be given read access to
sAMAccountName
and
objectclass
attributes. For more
information, see
Configuring Active Directory to Allow
Anonymous Queries (http://support.microsoft.com/kb/
320528)
.
For Windows Server 2003, you must perform additional
configuration. For more information, see
Configuring Active
Directory on Windows Server 2003 (http://
support.microsoft.com/kb/326690/en-us)
.
3. Copy the certificate file to the following directory on
Sentinel Log Manager server:
Install_Directory
/config
4. Set the ownership and permissions of the certificate file as
follows:
chown novell:novell
Install_Directory
/
config/<cert-file>
chmod 400
Install_Directory
/config/<cert-
file>
n
to use the non-secured connection port.
q
to quit the configuration.
LDAP server port
The default port number for a secured LDAP connection is 636.
The default port number for a non-secured LDAP connection is 389.
Parameter
Description
Summary of Contents for SENTINEL LOG MANAGER 1.0.0.5 - 03-31-2010
Page 4: ...4 Sentinel Log Manager 1 0 0 4 Administration Guide novdocx en 19 February 2010 ...
Page 46: ...46 Sentinel Log Manager 1 0 0 4 Administration Guide novdocx en 19 February 2010 ...
Page 74: ...74 Sentinel Log Manager 1 0 0 4 Administration Guide novdocx en 19 February 2010 ...
Page 140: ...140 Sentinel Log Manager 1 0 0 4 Administration Guide novdocx en 19 February 2010 ...
Page 146: ...146 Sentinel Log Manager 1 0 0 4 Administration Guide novdocx en 19 February 2010 ...
Page 148: ...148 Sentinel Log Manager 1 0 0 4 Administration Guide novdocx en 19 February 2010 ...
Page 158: ...158 Sentinel Log Manager 1 0 0 4 Administration Guide novdocx en 19 February 2010 ...
Page 166: ...166 Sentinel Log Manager 1 0 0 4 Administration Guide novdocx en 19 February 2010 ...
Page 168: ...168 Sentinel Log Manager 1 0 0 4 Administration Guide novdocx en 19 February 2010 ...