Previous Topic: Add the Root Certificate Authority to the Certificate Database

Next Topic: Verify that the Certificates are in the Database

Federation Manager GuideUser Directory Connections for AuthenticationHow to Connect to an LDAP User Directory Over SSLConfigure Federation Manager to Use the Certificate Database

Configure Federation Manager to Use the Certificate Database

Connecting to an LDAP user directory over SSL requires that Federation Manager point to the proper certificate database. This database must contain the cert7.db and key3.db files.

The XPSConfig tool, which is shipped with Federation Manager, enables you to specify the path to the certificate database using the LdapObjCertDbPath setting.

To specify the certificate database path for Federation Manager

  1. Open a command window.
  2. Navigate to federation_mgr_home.
  3. Enter XPSConfig. The command is case-sensitive on UNIX platforms.

    The Products Menu displays.

  4. Enter SM.

    The list of options displays.

  5. Enter the number for the LdapObjCertDbPath setting.

    The Parameter Menu displays.

  6. Enter C to change the value.
  7. Specify the path to the certificate database for the Enter New Value prompt. For example:

    C:\Program Files\CA\FederationManager\ldaps\certdb

  8. Enter Q until you exit from XPSConfig.

    The new value is saved.

Federation Manager is now using the correct certificate database.