This section tells you how to copy required files and configure the FIPS-supported redirector plug-in for an iPlanet 6.0. It assumes you have already installed and configured the plug-in for non-FIPS use and updated this installation by following the instructions described in “Adding FIPS and TLS support to the Web server redirector plug-in”.
Edit the magnus.conf file to load the FIPS-supported redirector module. The following lines illustrate a sample magnus.conf file that supports FIPS and TLS. The only difference from a non-FIPS sample is that the file libjeas_httpd40.so.a is replaced with libjeas_httpd40_f140.so.a; for example:
iPlanet 6.0:
Init fn="load-modules"shlib="WEB_SERVER_HOME/bin/https/libjeas_httpd40_f140.so.a" funcs="conn_init,conn_service" Init fn="conn_init" configfile="WEB_SERVER_HOME/https-neptune/config/conn_config"
Copy the required libraries. When you initially installed the non-FIPS-supported iPlanet 6.0 Web server plug-ins, and used WEB_SERVER_HOME as the location of the Web server software, you copied the libraries listed in Table 4-4 from your $JAGUAR/lib directory to the appropriate subdirectory. To support FIPS, you must also copy the following files to the same directory:
libjctssecct_f140.so
libjsbgpks_r.so.a
libjsybckif140_r.so.a
libjeas_httpd40_f140.so.a
libsbgse2.so
Verify that the Web redirector plug-in still works for your HTTP connections.
Enable FIPS for the redirector plug-in and establish HTTPS connections. See “Managing FIPS for the redirector plug-ins”
