Connector Guides › Connectors Guide › Connecting to Endpoints › CA ACF2 Connector › Securing Provisioning Server Communication to the CA LDAP Server

Securing Provisioning Server Communication to the CA LDAP Server

All communication between the Provisioning Server and the CA LDAP Server for z/OS can be encrypted using SSL (Secure Socket Layers).

To establish communication

• Setup your CA LDAP Server for z/OS to use the Server Mode for SSL connections. For information on how to configure this, see the chapter titled, "CA LDAP Server Using Digital Certificates" in the CA LDAP Server for z/OS Administrator Guide.
• Turn on SSL support within the Provisioning Server for your ACF2 endpoint. To do this, bring up the properties of your ACF2 endpoint using the Provisioning Manager. In the section entitled 'Mainframe LDAP Server Information', enable the check box entitled 'Use Server-side SSL' and click Apply. Now, all communication to the configured CA LDAP Server will attempt to use an SSL connection, and will fail and provide an appropriate error message if SSL cannot be established.