Connector Guides › Connectors Guide › Connecting to Endpoints › CA Top Secret Connector › Install and Configure the TSS Connector › Securing Provisioning Server Communication to the CA LDAP Server

Securing Provisioning Server Communication to the CA LDAP Server

All communication between the Provisioning Server and the CA LDAP Server for z/OS can be encrypted using SSL (Secure Socket Layers).

To establish communication

• Setup your CA LDAP Server for z/OS to use the Server Mode for SSL connections. For information on how to configure this, see the chapter titled "CA LDAP Server Using Digital Certificates" in the CA LDAP Server for z/OS Administrator Guide.
• Turn on SSL support within the Provisioning Server for your TSS endpoint. To do this, bring up the properties of your TSS endpoint using the Provisioning Manager. In the section entitled 'Mainframe LDAP Server Information', enable the check box entitled 'Use Server-side SSL' and click Apply. Now, all communication to the configured CA LDAP Server will attempt to use an SSL connection, and will fail and provide an appropriate error message if SSL cannot be established.