Contents

Introduction
    What's in this online material?
    What is Netscape SuiteSpot?
    Conventions used in this book.
    Navigator requirements
    How to use this book
    Contacting Technical Support

Chapter 1 Administration server basics
    Using the administration server
      Using the Server Manager forms
    Features new to the 3.x administration server
    Before you install or configure your servers
      Setting up the SuiteSpot user and group
      Installing 2.x and 3.x servers together
    Logging in to the administration server
      When distributed administration is off
      When distributed administration is on
    Stopping the administration server
    What to do next

Chapter 2 Configuring the administration server
    Removing a server from your system
    Configuring the system user and port number
    Changing the superuser settings
    Configuring distributed administration
      The superuser password file
      Enabling distributed administration
    Working with log files
      Viewing an access log file
      Viewing the error log file
    Using cron controls (Unix only)
    Configuring SNMP agents (Unix only)
      How does SNMP work?
      The Netscape MIBs
      Setting up SNMP
      Installing the SNMP master agent
        Manually installing the SNMP master agent
        Installing the SNMP master agent using the Server Manager
      Starting the SNMP master agent
        Manually starting the SNMP master agent
        Starting the SNMP master agent using the Server Manager
      Using the proxy SNMP agent
        Installing the proxy SNMP agent
        Starting the proxy SNMP agent
        Restarting the native SNMP daemon
        Installing subagents on AIX
      Configuring the community string
        Adding a community string
        Editing a community string
        Removing a community string
      Configuring trap destinations
        Adding a trap destination
        Editing a trap destination
        Removing a trap destination

Chapter 3 Managing clusters
    What are clusters?
    Before using clusters
    Setting up a cluster
      Adding a server to the server list
      Modifying cluster information
      Removing servers from a cluster
    Administering a cluster of servers

Chapter 4 Controlling access to your server
    What is access control?
      User-Group authentication
      Host-IP authentication
      Access control files
    How does access control work?
    Restricting access
      Specifying users and groups
      Specifying host names and IP addresses
      Access to programs
      Writing customized expressions
      Turning access control on and off
      Redirecting when access is denied

Chapter 5 Understanding encryption and SSL
    Internet security issues
    Taking precautions
    What is encryption?
      Public-key encryption
        How servers use encryption
      Signing files
      How does encryption work?
        How safe is encryption?
    Authentication and certificates
      Chaining certificates
      What's in a certificate?
        Choosing Certification Authorities
    Using client certificates
      Mapping client certificates to LDAP
      Using the certmap.conf file
        Creating custom properties
        Example mappings
    Putting all the pieces together: SSL
    Increasing server security
      Limit physical access
      Limit administration access
      Choose good passwords
      Secure your key-pair file
      Limit other applications on the server
      Limit ports
      Know your server's limits
    Enabling SSL encryption
      What is an alias?
        Creating an alias
        Removing an alias
        Listing aliases
      Generating a key-pair file
        Generating a key-pair file on Unix platforms
        Generating a key-pair file on Windows NT platforms
      Changing your key-pair file password
      Requesting a certificate
        Information CAs need
      Installing the certificate
      Managing server certificates
      Converting 2.0 certificate databases
      Activating SSL encryption
      Setting security (SSL) preferences
    Changes to the ns-admin.conf file
        Security
        SSL2
        SSL3
        Keyfile
        Certfile
        Ciphers
        SSL3Ciphers

Chapter 6 User and group management
    The directory service
      Netscape Directory Server
      The local directory
    Directory service clients
      Gateways
      Command line clients
    Authenticating to directory services
    Distinguished names
      Distinguished name syntax
        Using uid-based distinguished names
      Distinguished name usage
      Distinguished name examples
      Distinguished name attributes
      Using commas in distinguished names
    Planning your directory structure
      Disadvantages of organizational units
      Advantages of organizational units
      Recommendations for using organizational units
    Configuring directory services
      Using the local directory
      Using a directory server
    Converting a 2.0 database
      Converting individual databases
      Migrating a server configuration

Chapter 7 Managing users and groups
    Creating users
      Notes on user entries
    Managing users
      Finding user entries
        The "Find all users whose" field
      Editing user information
      Managing a user's password
      Managing user licenses
      Renaming users
      Removing users
    Creating groups
    Managing groups
      Finding group entries
        The "Find all groups whose" field
      Editing group attributes
      Adding group members
      Adding groups to the group members list
      Removing entries from the group members list
      Managing owners
      Managing see alsos
      Removing groups
      Renaming groups
    Creating organizational units
      Notes on organizational units
    Managing organizational units
      Finding organizational units
      Editing organizational unit attributes
      Renaming organizational units
      Deleting organizational units
    Importing a directory from LDIF
    Exporting a database to LDIF

Chapter 8 Modifying the directory
    ldapmodify
    LDIF update statements
      Change types
        Adding new entries with changetype: add
        Deleting entries with changetype: delete
        Renaming entries with changetype: modrdn
        Modifying entries with changetype: modify
      Adding an entry
      Deleting an entry
      Renaming an entry
      Modifying an entry
        Deleting an attribute
        Deleting an attribute value
        Adding attributes
        Changing an attribute value
    Using ldapmodify
      Using quotation marks
      Providing input from the command line
      Commonly used ldapmodify parameters
        Additional ldapmodify parameters
      ldapmodify example with local directory
      ldapmodify example with directory server

Chapter 9 Finding directory entries
    ldapsearch
    Search filters
      Search filter syntax
      Using attributes in search filters
      Using operators in search filters
      Using multiple search filters
        Boolean operators
        Search filter examples
    Using ldapsearch
      Using quotation marks
      Commonly used ldapsearch parameters
      Additional ldapsearch parameters
      ldapsearch example with local directory
      ldapsearch example with directory server

Chapter 10 Using LDIF
    The LDIF format
        Continued lines
      Creating databases using LDIF
        Creating LDIF entries
    Schema definition
      A consistent schema
      Customizing the schema
      Building custom clients
      A note about attribute values
      Object classes
      Attributes
      Required versus optional attributes
    Object Class Definitions
      Groups
        groupOfNames
        groupOfUniqueNames
      Replication
        LDAPServer
        LDAPReplica
      Locations
        country
        locality
      Organizations
        organization
        organizationalUnit
      People
        person
        organizationalPerson
        inetOrgPerson
        NTUser
      Netscape Suitespot extensions
        nginfo
        mailRecipient
        mailGroup
        groupOfMailEnhancedUniqueNames
        netscapeServer
        nsLicenseUser
    Attribute definitions

Index