Previous Topic: Review the CA LDAP Server for z/OS Configuration OptionsNext Topic: Top Secret Support for FIPS and IPv6

Connector GuidesConnectors GuideConnecting to EndpointsCA Top Secret ConnectorSecuring Provisioning Server Communication to the CA LDAP Server

Securing Provisioning Server Communication to the CA LDAP Server

All communication between the Provisioning Server and the CA LDAP Server for z/OS is encrypted using SSL (Secure Socket Layers).

Follow these steps:

  1. Set up your CA LDAP Server for z/OS to use the Server Mode for SSL connections. For information about how to configure SSL, see the section CA LDAP Server Using Digital Certificates in the CA LDAP Server for z/OS Administrator Guide.
  2. Turn on SSL support within the Provisioning Server for your TSS endpoint. To turn it on, get the properties of your TSS endpoint using the Provisioning Manager. In the section Mainframe LDAP Server Information, select the check box Use Server-side SSL and click Apply.

All the communication to the configured CA LDAP Server attempts to use an SSL connection. If it fails to establish SSL, the system provides appropriate error message.