friedkiwi/ibm-information-center
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
8826eae394
ibm-information-center/dist/eclipse/plugins/i5OS.ic.rzahu_5.4.0.1/rzahustep6haveusersinstallacopyofthelocalcacertificateintheirbrowser.htm

72 lines
5.1 KiB
HTML
Raw Normal View History

Add readme and dist folders
2024-04-02 14:02:31 +00:00
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html lang="en-us" xml:lang="en-us">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="security" content="public" />
<meta name="Robots" content="index,follow" />
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
<meta name="DC.Type" content="task" />
<meta name="DC.Title" content="Have users install a copy of the Local CA certificate in their browser" />
<meta name="DC.Relation" scheme="URI" content="rzahudcmpublicaccessscen.htm" />
<meta name="DC.Relation" scheme="URI" content="rzahustep5startthehumanresourceswebserverinsslmode.htm" />
<meta name="DC.Relation" scheme="URI" content="rzahustep7haveeachuserrequestacertificatefromthelocalca.htm" />
<meta name="copyright" content="(C) Copyright IBM Corporation 2000, 2006" />
<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 2000, 2006" />
<meta name="DC.Format" content="XHTML" />
<meta name="DC.Identifier" content="rzahustep6haveusersinstallacopyofthelocalcacertificateintheirbrowser" />
<meta name="DC.Language" content="en-us" />
<!-- All rights reserved. Licensed Materials Property of IBM -->
<!-- US Government Users Restricted Rights -->
<!-- Use, duplication or disclosure restricted by -->
<!-- GSA ADP Schedule Contract with IBM Corp. -->
<link rel="stylesheet" type="text/css" href="./ibmdita.css" />
<link rel="stylesheet" type="text/css" href="./ic.css" />
<title>Have users install a copy of the Local CA certificate in their browser</title>
</head>
<body id="rzahustep6haveusersinstallacopyofthelocalcacertificateintheirbrowser"><a name="rzahustep6haveusersinstallacopyofthelocalcacertificateintheirbrowser"><!-- --></a>
<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
<h1 class="topictitle1">Have users install a copy of the Local CA certificate in their browser</h1>
<div><div class="section"><p>When users access a server that provides a Secure Sockets Layer
(SSL) connection, the server presents a certificate to the user's client software
as proof of its identity. The client software must then validate the server's
certificate before the server can establish the session. To validate the server
certificate, the client software must have access to a locally stored copy
of the certificate for the Certificate Authority (CA) that issued the server
certificate. If the server presents a certificate from a public Internet CA,
the user's browser or other client software must already have a copy of the
CA certificate. If, as in this scenario, the server presents a certificate
from a private Local CA, each user must use Digital Certificate Manager (DCM)
to install a copy of the Local CA certificate. </p>
<p>Each user (Clients B,
C, and D) must complete these steps to obtain a copy of a Local CA certificate: </p>
</div>
<ol><li class="stepexpand"><span><a href="rzahurzahu66adcmstart.htm#rzahu66a-dcm_start">Start
DCM</a>.</span></li>
<li class="stepexpand"><span>In the navigation frame, select <span class="uicontrol">Install Local CA Certificate
on Your PC</span> to display a page that allows you to download the Local
CA certificate into your browser or to store it in a file on your system.</span></li>
<li class="stepexpand"><span>Select the option to install the certificate. This option downloads
the Local CA certificate as a trusted root in your browser. </span> This
ensures that your browser can establish secure communications sessions with
Web servers that use a certificate from this CA. Your browser will display
a series of windows to help you complete the installation. </li>
<li class="stepexpand"><span>Click <span class="uicontrol">OK</span> to return to the Digital Certificate
Manager home page.</span></li>
</ol>
<div class="section"><p>Now that users can access the human resources Web server in SSL
mode, these users must be able to present an appropriate certificate to authenticate
to the server. Consequently, they must obtain a user certificate from the
Local CA.</p>
</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="rzahudcmpublicaccessscen.htm" title="In this scenario, you to learn how to use certificates as an authentication mechanism to protect and restrict which resources and applications that internal users can access on your internal servers.">Scenario: Use certificates for internal authentication</a></div>
<div class="previouslink"><strong>Previous topic:</strong> <a href="rzahustep5startthehumanresourceswebserverinsslmode.htm">Start the human resources Web server in SSL mode</a></div>
<div class="nextlink"><strong>Next topic:</strong> <a href="rzahustep7haveeachuserrequestacertificatefromthelocalca.htm">Have each user request a certificate from the Local CA</a></div>
</div>
</div>
</body>
</html>
Reference in New Issue Copy Permalink