Before you can configure CA ControlMinder Enterprise Management to use SSL communication, add the users directory certificate to the keystore.
Note: For more information about how to configure SSL for Active Directory or CA Directory, see the Active Directory and CA Directory documentation.
Example: Adding the Active Directory Certificate to the Keystore
Important! This example shows you how to configure CA ControlMinder Enterprise Management to use SSL for secure communication with Active Directory using JBoss version 4.2.3 and JDK version 1.5.0. You must obtain the Active Directory certificate in a DER, CER or CERT encoded binary format before you begin this procedure.
jbossInstallDir/server/default/deploy/IdentityMinder.ear/custom/ppm/truststore
keytool -import -keystore ssl.keystore -alias ad -file <activedirectory.cert>
A password prompt appears.
Specifies that the utility reads the certificates and stores it in the keystore.
Specifies the alias to use for adding an entry to the keystore.
Specifies the full pathname of the Active Directory certificate file.
JbossInstallDir/bin
set JAVA_OPTS=%JAVA_OPTS% -Xms128m -Xmx512m -Djavax.net.ssl.trustStore=C:\jboss-4.2.3.GA\server\default\deploy\IdentityMinder.ear\custom\ppm\truststore\ssl.keystore
Copyright © 2013 CA Technologies.
All rights reserved.
|
|