Download or browse on-line these Manual for Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE Other.
This manual for Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE, given in the PDF format, is available for free online viewing and download without logging on. The guide contains 90 pages, and the size of the file at download is 0.51 Mb. The document type is Manual .
[Page 1] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Command-Line Tools Guide Netscape Certificate Management System Version 6.1 February 2003 ...
[Page 2] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Netscape Communications Corporation ("Netscape") and its licensors retain all ownership rights to the software programs offered by Netscape (referred to herein as "Software") and related documentation. Use of the Software and rel...
[Page 3] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
3 Contents About This Guide . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7 Who Should Read This Guide . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ....
[Page 4] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
4 Netscape Certificate Management System Command-Line Tools Guide • February 2003 Chapter 4 AuditVerify . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39 About the AuditVerify To...
[Page 5] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
5 Chapter 9 Binary to ASCII Tool . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79 Location . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ....
[Page 6] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
6 Netscape Certificate Management System Command-Line Tools Guide • February 2003 ...
[Page 7] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
7 About This Guide The Command-Line Tools Guide describes various command-line tools or utilities that are bundled with Netscape Certificate Management System (CMS). It provides the information such as the command syntax, platform support, examples...
[Page 8] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
What’s in This Guide 8 Netscape Certificate Management System Command-Line Tools Guide • February 2003 ❍ SSL cipher suites ❍ The purpose of and major steps in the SSL handshake • Understand the concepts of intranet, extranet, and the Intern...
[Page 9] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Conventions Used in This Guide About This Guide 9 Conventions Used in This Guide The following conventions are used in this guide: Chapter 5 “PIN Generator Tool” Describes how to use the tool for generating unique PINs for your users and for p...
[Page 10] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Conventions Used in This Guide 10 Netscape Certificate Management System Command-Line Tools Guide • February 2003 Notes and Cautions: Example: Rotation frequency. From the drop-down list, select the interval at which the server should rotate the a...
[Page 11] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Documentation About This Guide 11 Documentation All documentation is installed with the product and can be accessed from the help system. Further, the documentation can also be accessed from the installed product in the following directory: <ser...
[Page 12] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Documentation 12 Netscape Certificate Management System Command-Line Tools Guide • February 2003 ...
[Page 13] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
13 Chapter 1 Command-Line Tools Netscape Certificate Management System (CMS) is bundled with various command-line utilities. This chapter summarizes these utilities and provides pointers to chapters that further explain them. Table 1-1 summarizes t...
[Page 14] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
14 Netscape Certificate Management System Command-Line Tools Guide • February 2003 ExtJoiner (Extension Joiner Tool) A command line utility utilized to join a sequence of extensions together so that the final output can be used in the configuratio...
[Page 15] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Chapter 1 Command-Line Tools 15 bulkissuance (Bulk Issuance Tool) A command line utility utilized to send either a KEYGEN or CRMF enrollment request to the bulk issuance interface for the automatic creation of certificates. certutil (Certificate an...
[Page 16] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
16 Netscape Certificate Management System Command-Line Tools Guide • February 2003 Upgrade Utility (Upgrade an old CMS version to CMS 6.1) Upgrades from a CMS 4.2, CMS 4.2 (SP 2), 4.5, or 6.0 instance to a CMS 6.1 instance. For details, see Chap...
[Page 17] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Chapter 1 Command-Line Tools 17 The Certificate Database Tool (certutil), Netscape Signing Tool (signtool), Netscape Signature Verification Tool (signver), PKCS #12 Utility (pk12util), Cryptographic Message Syntax Tool (cmsutil), SSL Debugging Tool...
[Page 18] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
18 Netscape Certificate Management System Command-Line Tools Guide • February 2003 • The Certificate and Key Database Tool and Security Module Database Tool are useful for a variety of administrative tasks that involve manipulating certificate ...
[Page 19] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
19 Chapter 2 CMS Upgrade Utility If you have a previous installation of Netscape Certificate Management System (Certificate Management System), you can use the CMS Upgrade utility for upgrading to Certificate Management System, version 6.1. The uti...
[Page 20] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Before Upgrading 20 Netscape Certificate Management System Command-Line Tools Guide • February 2003 Before Upgrading Before upgrading from a CMS 4.2, 4.2 (SP 1), 4.2 (SP 1a), 4.2 (SP 2), 4.5, or 6.0 instance to a CMS 6.1 instance, you must complet...
[Page 21] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Upgrading Chapter 2 CMS Upgrade Utility 21 b. What you do next depends on which version you are converting. Follow the steps below that apply to the version you are converting: For migrating from CMS 4.2/CMS 4.2 (SP 1) or CMS 4.2 (SP 1a): i. Remove...
[Page 22] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Upgrading 22 Netscape Certificate Management System Command-Line Tools Guide • February 2003 iv. Copy the following file from the older server: <old_server_root>/admin-serv/config/secmod.db to the following location in the new server: <61_...
[Page 23] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Upgrading Chapter 2 CMS Upgrade Utility 23 ----- Password Cache ----- Internal LDAP Database : <password> Internal Key Storage Token : <password> Migrating from CMS 6.0 / CMS 6.01: a. Go to the following directory: <old_server_root>...
[Page 24] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Upgrading 24 Netscape Certificate Management System Command-Line Tools Guide • February 2003 c. Generate protection key. To do this, execute the following command: <61_server_root>/bin/cert/tools/PasswordCache <password> -d <alias...
[Page 25] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Upgrading Chapter 2 CMS Upgrade Utility 25 f. Add password tags and their associated passwords (from step 4.) back to the cache (You may need to do this mutiple times). Do this by executing the following command: <61_server_root>/bin/cert/to...
[Page 26] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Upgrading 26 Netscape Certificate Management System Command-Line Tools Guide • February 2003 password cache file = pwcache.db token name = internal PWsdrCache: mToken = internal adding Internal Key Storage Token:<associated_tag_password> PWsd...
[Page 27] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Upgrading Chapter 2 CMS Upgrade Utility 27 b. What you do next depends on which version you are converting. Follow the steps below that apply to the version you are converting: Migrating from CMS 4.2 / CMS 4.2 (SP 1) / CMS 4.2 (SP 1a) NOTE: Replace...
[Page 28] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Upgrading 28 Netscape Certificate Management System Command-Line Tools Guide • February 2003 a. Go to the following directory: <61_server_root>/slapd-<instance>-db b. Execute the following db2ldif command to export the internal directo...
[Page 29] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Upgrading Chapter 2 CMS Upgrade Utility 29 d. What you do next depends on which version you are converting. Follow the steps below that apply to the version you are converting: Migrating from CMS 4.2 / CMS 4.2 (SP 1) / CMS 4.2 (SP 1a) v. Go to the ...
[Page 30] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Upgrading 30 Netscape Certificate Management System Command-Line Tools Guide • February 2003 a. Go to the following directory: <old_server_root>/slapd-<instance>-db/ldif b. Move <old_server_root>/slapd-<instance>-db/ldif/ol...
[Page 31] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
After Upgrading Chapter 2 CMS Upgrade Utility 31 After Upgrading After upgrading to CMS 6.1, access the End-Entity Services and the Agent Services interfaces of the new CMS 6.1 instance to ensure that everything is working properly. You must also l...
[Page 32] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
After Upgrading 32 Netscape Certificate Management System Command-Line Tools Guide • February 2003 ...
[Page 33] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
33 Chapter 3 Password Cache Utility During the installation of Netscape Certificate Management System (CMS), the installation daemon stores all the passwords required by the server for starting up—such as the bind passwords used by Certificate Ma...
[Page 34] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Syntax 34 Netscape Certificate Management System Command-Line Tools Guide • February 2003 Syntax To run the utility, execute the following command from the <server_root>/cert-<instance_id>/config directory (must be run from this direc...
[Page 35] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Usage Chapter 3 Password Cache Utility 35 the names known by Certificate Management System: for example, the internal cryptographic module is known as internal, the internal LDAP bind password is known as Internal LDAP Database, and the LDAP publi...
[Page 36] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Usage 36 Netscape Certificate Management System Command-Line Tools Guide • February 2003 PasswordCache <sso_password> -d <certificate/key db directory> -P <certificate/key db prefix> list For example, assume your single sign-on p...
[Page 37] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Usage Chapter 3 Password Cache Utility 37 2. Save the value portion of the key id into a local file such as key.txt 3. Save the value portion of the key id into the CMS.cfg file under the variable "pwcKeyid" Adding a New Entry to the Passw...
[Page 38] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Usage 38 Netscape Certificate Management System Command-Line Tools Guide • February 2003 PasswordCache <sso_password> -d <certificate/key db directory> -P <certificate/key db prefix> -k keyID.txt change <password_name> <...
[Page 39] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
39 Chapter 4 AuditVerify About the AuditVerify Tool The AuditVerify tool is used to verify that signed audit logs were signed with the signed audit private signing key, and that the signed audit log has not been compromised. Auditors can verify th...
[Page 40] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Audit Verify Tool Syntax 40 Netscape Certificate Management System Command-Line Tools Guide • February 2003 1. As an auditor, create the security database directory in your file system. For example: mkdir dbdir 2. Use the certutil tool to create a...
[Page 41] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Return Values Chapter 4 AuditVerify 41 Return Values When you use the AuditVerify Tool, you will receive one of the following return values: Using the Audit Verify Tool Once you have an appropriately-configured database directory, you can use the A...
[Page 42] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Using the Audit Verify Tool 42 Netscape Certificate Management System Command-Line Tools Guide • February 2003 1. Create a text file containing a comma-separated list of the files you want to verify. The name of this file will be used in the Audit...
[Page 43] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
43 Chapter 5 PIN Generator Tool For Netscape Certificate Management System (CMS) to use the authentication plug-in module named UidPwdPinDirAuth your authentication directory must contain unique PINs for each end entity to whom you intend to issue...
[Page 44] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
The setpin Command 44 Netscape Certificate Management System Command-Line Tools Guide • February 2003 The setpin Command You run the PIN Generator by entering the setpin command and its arguments in a command shell and monitoring the output in the...
[Page 45] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
The setpin Command Chapter 5 PIN Generator Tool 45 A description for each argument follows: • [host=<host_name> [port=<port_number>]] <host_name> specifies the LDAP directory to connect to. This argument is required. <port_nu...
[Page 46] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
The setpin Command 46 Netscape Certificate Management System Command-Line Tools Guide • February 2003 <LDAP_base_DN> specifies the base DN to be utilized by the LDAP search filter. If this argument is not specified, the filter will begin sea...
[Page 47] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
The setpin Command Chapter 5 PIN Generator Tool 47 Use this argument to specify the message digest algorithm the tool should use to hash the PINs before storing them in the authentication directory. If you want to store PINs as SHA-1 or MD5 hashed ...
[Page 48] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
The setpin Command 48 Netscape Certificate Management System Command-Line Tools Guide • February 2003 • [clobber] Use this argument to specify whether the tool should overwrite preexisting PINs, if any, associated with a DN (user). If specified,...
[Page 49] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
How the Tool Works Chapter 5 PIN Generator Tool 49 Example The following command generates PINs for all entries that have the CN attribute (in their distinguished name) defined in an LDAP directory named laiking that is listening at port 19000. T...
[Page 50] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
How the Tool Works 50 Netscape Certificate Management System Command-Line Tools Guide • February 2003 Figure 5-1 Using an input and output file for the PIN-generation process Examples of output follow: Processing: cn=QA Managers,ou=employees,o=exa...
[Page 51] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
How the Tool Works Chapter 5 PIN Generator Tool 51 Because the PIN Generator makes a lot of changes to your directory, it is important that you specify the correct filter; otherwise, you may change the wrong entries. As a safeguard, a write option...
[Page 52] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
How the Tool Works 52 Netscape Certificate Management System Command-Line Tools Guide • February 2003 The purpose of the input file is multi fold. It enables you to provide the Pin Generator with an exact list of DNs to modify. Via the input file,...
[Page 53] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
How the Tool Works Chapter 5 PIN Generator Tool 53 dn:cn=user3, o=example.com pin:3knAg60 <blank line> Output File The PIN Generator can capture the output to a text file specified by the output=<file_name> argument. The captured output ...
[Page 54] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
How the Tool Works 54 Netscape Certificate Management System Command-Line Tools Guide • February 2003 • On Unix: \n • On Windows NT: \r\n How PINs Are Stored in the Directory Each PIN is concatenated with the corresponding user's LDAP attr...
[Page 55] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
How the Tool Works Chapter 5 PIN Generator Tool 55 4 Indicates that the tool could not bind to the directory as the user specified by the binddn parameter (over SSL). 5 Indicates that the tool could not open the output file specified by the output ...
[Page 56] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
How the Tool Works 56 Netscape Certificate Management System Command-Line Tools Guide • February 2003 ...
[Page 57] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
57 Chapter 6 Extension Joiner Tool Netscape Certificate Management System (CMS) provides many policy plug-in modules that enable you to add standard and custom X.509 certificate extensions to end-entity certificates the server issues. Similarly, th...
[Page 58] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Location 58 Netscape Certificate Management System Command-Line Tools Guide • February 2003 Location The ExtJoiner program is located with the rest of the command-line tools in this directory: <server_root>/bin/cert/tools Syntax To run the ...
[Page 59] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Usage Chapter 6 Extension Joiner Tool 59 3. Verify that the extensions are joined correctly before adding them to a certificate request. To do this, first you’ll need to convert the binary data to ASCII format using the AtoB utility and then ver...
[Page 60] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Usage 60 Netscape Certificate Management System Command-Line Tools Guide • February 2003 ...
[Page 61] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
61 Chapter 7 Backing Up and Restoring Data This chapter explains how to back up the Netscape Certificate Management System (CMS) data and configuration information and how to use the backups to restore data if there is a need. The chapter has the f...
[Page 62] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Backing Up Data 62 Netscape Certificate Management System Command-Line Tools Guide • February 2003 The backup and restore tools are simple Perl scripts; most Perl programmers should find no difficulty in customizing or extending them. Read this ch...
[Page 63] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Backing Up Data Chapter 7 Backing Up and Restoring Data 63 What the Backup Tool Does There is a script or batch file installed in the instance directory of every CMS instance. This file calls the Perl script <server_root>/bin/cert/tools/CMSBa...
[Page 64] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Backing Up Data 64 Netscape Certificate Management System Command-Line Tools Guide • February 2003 • *.conf, the Configuration files for the server and its associated LDAP data The backup tool will use the Netscape Directory Server db2bak tool ...
[Page 65] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Backing Up Data Chapter 7 Backing Up and Restoring Data 65 All of the data to be backed up is copied to the temporary backup directory. After all of the data has been copied, the script archives the entire backup directory into a compressed archive...
[Page 66] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Backing Up Data 66 Netscape Certificate Management System Command-Line Tools Guide • February 2003 • You are logged in as a user with permission to run cmsbackup, to run db2bak for the LDAP servers, and to write to the output directory; you may ...
[Page 67] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Signing Backup Data Using cmsutil Chapter 7 Backing Up and Restoring Data 67 Once you have a successful zip archive, you should secure it. The output directory is probably accessible to any user on the system, and it may be on the same physical dis...
[Page 68] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Signing Backup Data Using cmsutil 68 Netscape Certificate Management System Command-Line Tools Guide • February 2003 ❍ Invoke a command-line interface such as a telnet session. ❍ From the command line, assuming a Bourne Shell ("sh") o...
[Page 69] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Verifying Signed Backup Data using cmsutil Chapter 7 Backing Up and Restoring Data 69 ❍ Sign the CMS backup data file by executing the following command: cmsutil -S -N <nickname of EMAIL Signing user certificate> -T -i /var/tmp/<CMS backu...
[Page 70] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Restoring Data 70 Netscape Certificate Management System Command-Line Tools Guide • February 2003 ❍ Import the EMAIL Signing user certificate and corresponding key from the PKCS #12 file specified in “Signing Backup Data Using cmsutil,” on p...
[Page 71] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Restoring Data Chapter 7 Backing Up and Restoring Data 71 Before You Restore Data Before you can restore from a backup archive, the archive you want to use has to be available on a disk accessible from the server instance directory. If you want to u...
[Page 72] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Restoring Data 72 Netscape Certificate Management System Command-Line Tools Guide • February 2003 • During configuration, you still need to create new keys and certificates for any servers that use the internal token. You only need to create the...
[Page 73] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Restoring Data Chapter 7 Backing Up and Restoring Data 73 3. Execute the restore script: either cmsrestore on UNIX or cmsrestore.bat on Windows NT systems. You can either provide the <archive_path> as an argument or use the argument automat...
[Page 74] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Restoring Data 74 Netscape Certificate Management System Command-Line Tools Guide • February 2003 e. Non-CMS shared data is data in the <server_root>/shared/config directory. f. CMS certificate and key databases are the databases in the &...
[Page 75] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Restoring Data Chapter 7 Backing Up and Restoring Data 75 Review each step to make sure there were no errors in restoring the data. If there were errors or warnings, you may want to run cmsrestore again. You may need to change permissions on some ...
[Page 76] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Restoring Data 76 Netscape Certificate Management System Command-Line Tools Guide • February 2003 ...
[Page 77] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
77 Chapter 8 ASCII to Binary Tool You can use the ASCII to Binary tool to convert ASCII base-64 encoded data to binary base-64 encoded data. This chapter has the following sections: •“Location,” on page 77 •“Syntax,” on page 77 •“E...
[Page 78] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Example 78 Netscape Certificate Management System Command-Line Tools Guide • February 2003 Example AtoB.bat C:\test\data.in C:\test\data.out The above command takes the base-64 encoded data (in ASCII format) in the file named data.in and writes t...
[Page 79] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
79 Chapter 9 Binary to ASCII Tool You can use the Binary to ASCII tool to convert binary base-64 encoded data to ASCII base-64 encoded data. The chapter has the following sections: •“Location,” on page 79 •“Syntax,” on page 79 •“Ex...
[Page 80] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Example 80 Netscape Certificate Management System Command-Line Tools Guide • February 2003 Example BtoA.bat C:\test\data.in C:\test\data.out The above command takes the base-64 encoded data (in binary format) in the file named data.in and writes ...
[Page 81] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
81 Chapter 10 Pretty Print Certificate Tool You can use the Pretty Print Certificate tool to print the contents of a certificate stored as ASCII base-64 encoded data in a human-readable form. The chapter has the following sections: •“Location,�...
[Page 82] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Examples 82 Netscape Certificate Management System Command-Line Tools Guide • February 2003 <output_file> specifies the path to the file to write the certificate. This argument is optional; if you don’t specify an output file, the certific...
[Page 83] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Examples Chapter 10 Pretty Print Certificate Tool 83 Subject Public Key Info: Algorithm: RSA - 1.2.840.113549.1.1.1 Public Key: 30:81:89:02:81:81:00:DE:26:B3:C2:9D:3F:7F:FA:DF: 24:E3:9B:7A:24:AC:89:AD:C1:BA:27:D1:1C:13:70:F7: 96:59:41:1F:4D:21:7A:F5:...
[Page 84] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Examples 84 Netscape Certificate Management System Command-Line Tools Guide • February 2003 -----BEGIN CERTIFICATE----- MIIC2DCCAkGgAwIBAgICEAwwDQYJKoZIhvcNAQEFBQAwfDELMAkGA1UEBhMCVVMxIzA hBgNVBAoTGlBhbG9va2FWaWxsZSBXaWRnZXRzLCBJbmMuMR0wGwYDVQQLExR...
[Page 85] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
85 Chapter 11 Pretty Print CRL Tool You can use the Pretty Print CRL tool to print the contents of a CRL stored as ASCII base-64-encoded data in a human-readable form. The chapter has the following sections: •“Location,” on page 85 •“Synt...
[Page 86] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Example 86 Netscape Certificate Management System Command-Line Tools Guide • February 2003 Example PrettyPrintCrl.bat C:\test\crl.in C:\test\crl.out The above command takes the ASCII base-64 encoded CRL in the crl.in file and writes the CRL in the...
[Page 87] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Example Chapter 11 Pretty Print CRL Tool 87 Serial Number: 0x11 Revocation Date: Wednesday, December 16, 1998 4:51:54 AM Extensions: Identifier: Revocation Reason - 2.5.29.21 Critical: no Reason: Key_Compromise Serial Number: 0x10 Revocation Date: Th...
[Page 88] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Example 88 Netscape Certificate Management System Command-Line Tools Guide • February 2003 ...
[Page 89] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
Index 89 Index A adding new entries to the password cache 37 ASCII to Binary tool 77 example 78 location 77 syntax 77 B Binary to ASCII tool 79 example 80 location 79 syntax 79 C changing passwords in the password cache 37 command-line utilities 13 A...
[Page 90] Red Hat NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
90 Netscape Certificate Management System Command-Line Tools Guide • February 2003 ExtJoiner tool example 58 location 58 syntax 58 F fonts used in this book 9 L listing contents of password cache 35 location of command-line utilities 13 PIN Generat...
Manual (73 pages)
Manual (111 pages)
Installation manual (110 pages)
Release note (10 pages)
Installation manual (210 pages)
Reference manual (128 pages)