Implementation GuideInstalling the Enterprise Management ServerHow to Install the Enterprise Management Server ComponentsEnterprise Management Server SSL CommunicationHow You Configure CA Access Control Enterprise Management for SSL Communication › Configure CA Access Control Enterprise Management for SSL Communication

Previous Topic: Adding the Users Directory Certificate to the Keystore

Next Topic: Advanced Configuration
Configure CA Access Control Enterprise Management for SSL Communication

After you add the users directory certificate to the keystore, you can configure CA Access Control Enterprise Management to work with SSL communication.

Note: To configure CA Access Control Enterprise Management for SSL connection you must enable the CA Identity Manager Management Console. For more information about the CA Identity Manager Management Console, see the CA Identity Manager Management Console online help.

To configure CA Access Control Enterprise Management for SSL communication

  1. In the CA Identity Manager Management Console, click Directories.
  2. Click the ac-dir directory.

    The Directory Properties windows appears.

  3. At the bottom of the properties window, click Export.
  4. When prompted, save the XML file.
  5. Open the XML file for editing.
  6. Locate the <Provider userdirectory="ac-dir" type="LDAP"> tag.
  7. Change the secure parameter to true. For example: 
    <LDAP searchroot="DC=abc,DC=company,DC=com" secure="true">
  8. Locate the <Connection host="COMPUTER.abc.company.com" port=" "> tag and change the port number to 636. For example: 
    <Connection host="COMPUTER.abc.company.com" port="636">
  9. Search for all appearances of the <Container objectclass="top,organizationalUnit" attribute="ou"/> tag and enter the value parameter at the end of each line. For example: 
    <Container objectclass="top,organizationalUnit" attribute="ou" value=""/>
  10. Save the file.
  11. In the CA Identity Manager Management Console, from the directory properties page, click Update.

    The Update Directory window appears.

  12. Type the path and file name of the XML file for updating the Identity Manager directory, or browse for the file, then click Finish.

    Status information is displayed in the Directory Configuration Output field.

  13. Click Continue, and restart the environment.

    CA Access Control Enterprise Management can now communicate with the users directory using SSL.

More information:

Enable the CA Identity Manager Management Console

Open the CA Identity Manager Management Console

Adding the Users Directory Certificate to the Keystore