Previous Topic: Adding the Users Directory Certificate to the KeystoreNext Topic: Message Queue Server SSL Port Numbers

Implementation GuideChanging Communication Encryption MethodsSSL, Authentication, and CertificatesEnterprise Management Server SSL CommunicationHow You Configure CA ControlMinder Enterprise Management for SSL CommunicationConfigure CA ControlMinder Enterprise Management for SSL Communication

Configure CA ControlMinder Enterprise Management for SSL Communication

After you add the users directory certificate to the keystore, you can configure CA ControlMinder Enterprise Management to work with SSL communication.

Note: To configure CA ControlMinder Enterprise Management for SSL connection you must enable the CA Identity Minder Management Console. For more information about the CA Identity Minder Management Console, see the CA Identity Minder Management Console online help.

To configure CA ControlMinder Enterprise Management for SSL communication

  1. In the CA Identity Minder Management Console, click Directories.
  2. Click the ac-dir directory.

    The Directory Properties windows appears.

  3. At the bottom of the properties window, click Export.
  4. When prompted, save the XML file.
  5. Open the XML file for editing.
  6. Locate the <Provider userdirectory="ac-dir" type="LDAP"> tag.
  7. Change the secure parameter to true. For example: 
    <LDAP searchroot="DC=abc,DC=company,DC=com" secure="true">
  8. Locate the <Connection host="COMPUTER.abc.company.com" port=" "> tag and change the port number to 636. For example: 
    <Connection host="COMPUTER.abc.company.com" port="636">
  9. Search for all appearances of the <Container objectclass="top,organizationalUnit" attribute="ou"/> tag and enter the value parameter at the end of each line. For example: 
    <Container objectclass="top,organizationalUnit" attribute="ou" value=""/>
  10. Save the file.
  11. In the CA Identity Minder Management Console, from the directory properties page, click Update.

    The Update Directory window appears.

  12. Type the path and file name of the XML file for updating the Identity Manager directory, or browse for the file, then click Finish.

    Status information is displayed in the Directory Configuration Output field.

  13. Click Continue, and restart the environment.

    CA ControlMinder Enterprise Management can now communicate with the users directory using SSL.