Chapter 3. Administrative Basics

Chapter 3. Administrative Basics

3.1. Administrative Console
3.2. Enabling SSL Client Authentication for the Certificate System Console
3.3. System Passwords
3.3.1. Protecting the password.conf File
3.3.2. Password-Quality Checker
3.4. Starting, Stopping, and Restarting Certificate System Subsystems
3.4.1. Starting a Server Instance
3.4.2. Stopping a Server Instance
3.4.3. Restarting a Server Instance
3.4.4. Restarting a Subsystem after a Machine Restart
3.5. Mail Server
3.6. Configuration Files
3.6.1. Locating the Configuration File
3.6.2. Editing the Configuration File
3.6.3. Guidelines for Editing the Configuration File
3.6.4. Duplicating Configuration from One Instance to Another
3.6.5. Other File Locations
3.6.6. Default Server Instance Locations
3.7. Using Security-Enhanced Linux
3.8. Using Java Servlets
3.9. Logs
3.9.1. About Logs
3.9.2. Services That Are Logged
3.9.3. Log Levels (Message Categories)
3.9.4. Buffered Versus Unbuffered Logging
3.9.5. Log File Rotation
3.9.6. Configuring Logs in the Console
3.9.7. Configuring Logs in the CS.cfg File
3.9.8. Configuring TPS Logs
3.9.9. Monitoring Logs
3.9.10. Signing Log Files
3.9.11. Registering a Log Module
3.9.12. Deleting a Log Module
3.9.13. Signed Audit Log
3.10. Self-Tests
3.10.1. Self-Test Logging
3.10.2. Self-Test Configuration
3.10.3. Modifying Self-Test Configuration
3.11. Ports
3.11.1. About Ports
3.11.2. Changing a Port Number
3.12. The Internal LDAP Database
3.12.1. Changing the Internal Database Configuration
3.12.2. Enabling SSL Client Authentication with the Internal Database
3.12.3. Restricting Access to the Internal Database
3.13. Backing up and Restoring Certificate System

This chapter discusses the Certificate System administrative console, the configuration files, and other basic administrative tasks such as starting and stopping the server, managing logs, changing port assignments, and changing the internal database.