Before you begin using the ACE/Agent for Netscape Servers software, these tasks must be completed using the ACE/Server sdadmin program (Administration Program in Windows NT environments). These processes are covered in the ACE/Server Administration Manual.
Tip: Use this flowchart of the ACE/Server
administration tasks to make sure all the tasks are performed.
1. The ACE/Server administrator has provided you with a copy of the sdconf.rec file
Your ACE/Server administrator must provide you with a copy of sdconf.rec, a configuration file that contains critical ACE/Server information.
During ACE/Agent installation, you were prompted to specify the directory where the sdconf.rec file would be located. Copy the sdconf.rec file into this directory, then store a backup copy of the file on a floppy disk in a physically secure place.
Note: The path to the sdconf.rec
file must be specified in the VAR_ACE parameter
of the /netscape_home_directory/plugins/aceagent/aceagent.cfg
file. If the VAR_ACE
environment variable is set at the command line during server
startup, the VAR_ACE directory specified in aceagent.cfg
will be overridden by the value of the newly set VAR_ACE
environment variable.
2. The Web server machine is registered in the ACE/Server database
Although the machine running the ACE/Agent software is a Web server with its own clients, to the ACE/Server it is a client requesting authentication services. Therefore, the workstation running the ACE/Agent for Netscape Servers software must be registered as a client of the ACE/Server. The client type must be UNIX.
3. The WebID users are registered as SecurID tokenholders
The users who will be challenged for PASSCODEs must be registered as tokenholders in the ACE/Server database, and their tokens must be activated.
4. The WebID users have their SecurID tokens
You must provide the users who will be challenged for PASSCODEs with their tokens and copies of the authentication instructions. (These instructions, named pinpad.pdf, softid.pdf, and standard.pdf, are stored in the /netscape_home_directory/docs/aceagent/authdocs directory.)
5. Virtual Web servers must be defined as secondary nodes in the ACE/Server database
If you plan to enable ACE/Agent protection on virtual Web servers, you must define a secondary ACE/Client node for each the virtual servers IP address.