Deployment Guide › Account Import › Command Line Import Operations › Set Up Secure Sockets Layer (SSL)

Set Up Secure Sockets Layer (SSL)

CA DLP supports SSL when importing user details from an LDAP directory via a command line. To use SSL, you must first obtain a server authentication certificate that identifies your LDAP server and install it on your CMS to enable CA to recognize and trust the server. Then, you need to add the SSL support option to your command file:

1. Install the certificate on the CMS: From a command prompt in the \system\jre142_12\bin subfolder in the CA DLP installation folder on the CMS, run:

   keytool -import -keystore ..\lib\security\jssecacerts 
   -alias <alias> -file <cert file>
   

   where:

   <alias> is a relevant and descriptive name for the certificate and <cert file> is its file name.

   Note: We recommend that you restart the CMS after installing the server authentication certificate.

2. Configure the parameter file: Add the /us option to the command line import operation configuration file to enable support for SSL.