Chapter 5 Starting and Stopping Instances
This chapter describes how to start, stop, and restart Netscape Certificate Management System (CMS) and how to check its current status. The chapter also explains the CMS watchdog process, a native bootstrapping program that enables Certificate Management System to start up with a single password instead of multiple ones.
When you start Certificate Management System, you are prompted to enter the single sign-on password you specified during installation. This password enables the CMS watchdog (see "CMS Watchdog Process") to retrieve all the passwords required by the server to start. These include the following:
Starting from Netscape Console
You can use Netscape Console to start an instance of Certificate Management System running on a local or remote host.
When you start Certificate Management System, you are prompted to supply the single sign-on password for the server.
Certificate Management System won't start until you provide this password. For more information, see "Required Start-up Information".
To start Certificate Management System from the command line:
<server_root>/cert-<instance_id>/start-cert[.bat]
<server_root> is the directory where the CMS binaries are kept. You first specified this directory during installation.
<instance_id> is the ID for this instance of Certificate Management System. You first specified this when you installed this server.
Starting from the Windows NT Services Panel
If you have installed Certificate Management System on a Windows NT system, you can start the server (as a service) from the Windows NT Services panel (see Figure 5.1). The CMS service has the following name:
Figure 5.1 CMS service in the Windows NT Services panel
You are prompted to supply the single sign-on password for the server.
You can use Netscape Console to stop an instance of Certificate Management System running on a local or remote host.
The server is stopped.
You can stop a CMS instance running on a local host by entering the appropriate command at the command prompt.
<server_root>/cert-<instance_id>/stop-cert[.bat]
You can stop a CMS instance running on a local host by stopping the corresponding service; it is identified by the following in the Windows NT Services panel (see Figure 5.1 on page 110):
You can use the CMS window to restart an instance of Certificate Management System on a local or remote host.
When you restart Certificate Management System, you are prompted to supply the single sign-on password for the server.
Certificate Management System won't restart until you provide this password. For more information, see "Required Start-up Information".
To restart Certificate Management System from the command line:
<server_root>/cert-<instance_id>/restart-cert[.bat]
In the right pane, check the Server Status field. If the selected instance of Certificate Management System is running, the status will be Started. Otherwise it will be Stopped.
c:\> killproc 255
Killed process 255.
c:\>
The watchdog process implements the following operations:
The watchdog allows you to start Certificate Management System by using a single password instead of the multiple passwords that would otherwise be required. For details on these passwords, see "Required Start-up Information".
During CMS installation the watchdog stores all the passwords required by the server for starting up in a password cache. The cache is maintained in a file encrypted using the single sign-on password you specify during installation. When you change any of the required passwords or provide new passwords, you must start the server from the command-line (see "Starting from the Command Line") so that the watchdog can prompt you for the new passwords in order to update the cache.
The watchdog monitors Certificate Management System and the Java VM, restarting the server in the case of a failure.