From Developer Community
|
Novell Certificate Server Libraries for C provide programmatic access to Certificate Server. Certificate Server is an enterprise PKI solution that offers the ability to freely mint an unlimited number of digital certificates for end-users (such as to enable secure e-mail or X.509 certificate-based authentication) and for servers (such as to enable SSL security). Novell currently provides two Certificate Server API libraries with this download. All are written in the C programming language: - Novell Certificate Server Library for C Version 2 (NPKI) - A new cross platform, directory-centered public key management library that does not depend on a Novell Client.
- Novell Public Key Infrastructure Toolbox (NPKIT) - A new cross platform, non-directory public key utility library.
The original public key management API library - version 1 - is now available from the NDK Unsupported page at Novell Certificate Server Library for C Version 1 (PKIS).
|
Downloads
Download Archive
What's New
October 17, 2007
Binaries:
- Updated source code to the 3.3.0 version. New features include:
- Support for the SHA-2 signing algorithm.
- Support for forcing the acquisition of a new CRL rather than using a cached CRL during certificate chain validation.
- Support for User and Server Self-Provisioning via new SecurityRightsLevel APIs.
- The capability to require Write rights to operate the CA via new SecurityRightsLevel APIs.
- The capability to allow any authenticated user to cause the CA to issue an emergency CRL via new SecurityRightsLevel APIs.
- Support for the PKCS#8 Private Key type in the NPKIT PEM types.
- Changes to support 64 bit versions.
- A flag for NPKIGetServerInfo that is used to remotely start the Server Health Check.
- A flag for NPKICreateDefaultCertificates, which will cause the default certificates to be re-created if the CA has changed.
- Changed NPKICreateDefaultCertificates to automatically add subject alternative names when creating the default certificates.
- APIs to configure the new KMO Export functionality which can export a KMO's certificates and private-key to the file system in a format consistent with Apache or OpenSSL Servers. (This functionality is not needed or available on NetWare.)
Doc:
Sample:
view full changelog
|
Dependencies
Novell Certificate Server Libraries for C
To use Novell Certificate Server Libraries for C on the server, choose from the following:
For Microsoft Windows*
- Microsoft Windows NT version 4.0 with Service Pack 3 or above or Windows 2000/XP
- Novell International Cryptographic Infrastructure (NICI) version 2.40 or later installed on the client.
- (Optional unless running eDirectory) Security Support Pack 2.0.5 or later (includes NICI and Novell Certificate Server).
For a NetWareŽ Server as a Client
- Novell NetWare 5.1 (SP8) or later or NetWare 6.5 (SP5) or later.
- Novell International Cryptographic Infrastructure (NICI) version 2.40 installed on the server.
For NetWare
- Novell Netware 5.1 (SP8) or later; NetWare (SP5) or later.
- Novell eDirectory 8.73 (SP7) or later or Novell eDirectory 8.8.
- Security Support Pack 2.0.5 or later (includes NICI and Novell Certificate Server).
For Red Hat Linux
- Red Hat 7.2 or 7.3
- Novell eDirectory 8.73 (SP7) or later or Novell eDirectory 8.8.
- Security Support Pack 2.0.5 or later (includes NICI and Novell Certificate Server).
For IBM AIX
- AIX 4.3 or 5.
- Novell eDirectory 8.73 (SP7) or later or Novell eDirectory 8.8.
- Security Support Pack 2.0.5 or later (includes NICI and Novell Certificate Server).
For Sun Solaris
- Solaris 2.7 or 2.8
- Novell eDirectory 8.73 (SP7) or later or Novell eDirectory 8.8.
- Security Support Pack 2.0.5 or later (includes NICI and Novell Certificate Server).
|
Support
This component is peer supported by the Novell developer community.
Support Forums
| novell.devsup.security
| News
|
| novell.devsup.ncslib (read-only)
|
| News
|
