Show Table of Contents
6.4. Installing Red Hat Directory Server
Certificate System uses Red Hat Directory Server to store system certificates and user data. You can install both Directory Server and Certificate System on the same or any other host in the network.
Perform the following steps to install Red Hat Directory Server:
- Attach a Directory Server subscription to the host.
- Install the Directory Server packages.
- Run the
setup-ds.plPerl script to set up a Directory Server instance.
For a detailed procedure, see the Red Hat Directory Server Installation Guide.
6.4.1. Enabling TLS Support in Directory Server
For details about enabling TLS support in Directory Server, see the Enabling TLS in Directory Server section in the Directory Server Administration Guide.
Note
For stronger security, Red Hat recommends that you install Certificate System with TLS enabled for the connection to Directory Server.
As described in the Directory Server documentation, you can configure TLS either using a certificate issued by an external Certificate Authority (CA) or a temporary self-signed server certificate. However, after setting up the Certificate System CA, you can use this CA to issue a certificate and replace it with the one used when you set up Directory Server. For details on how to request and issue a TLS server certificate for Directory Server, see the corresponding section in the Red Hat Certificate System Administration Guide.
Where did the comment section go?
Red Hat's documentation publication system recently went through an upgrade to enable speedier, more mobile-friendly content. We decided to re-evaluate our commenting platform to ensure that it meets your expectations and serves as an optimal feedback mechanism. During this redesign, we invite your input on providing feedback on Red Hat documentation via the discussion platform.