Connecting Access Manager to
the SSL-enabled Directory Server
Once the Directory Server has been configured for SSL mode, you need
to securely connect Access Manager to the Directory Server backend.
To Connect Access Manager to Directory Server
-
In the Access Manager Console, go to the LDAP
Authentication service in the Service Configuration module.
-
Change the Directory Server port to the SSL
port.
-
Select the Enable SSL Access to LDAP Server
attribute.
-
Go to the Membership Authentication service
in the Service Configuration module.
-
Change the Directory Server port to the SSL
port.
-
Select the Enable SSL Access to LDAP Server
attribute.
-
Go to the Policy Configuration service located
in Service Configuration.
-
Change the Directory Server port to the SSL
port.
-
Select the Enable LDAP SSL attribute.
-
Open the serverconfig.xml in
a text editor. The file is in the following location:
/etc/opt/SUNWam/config
-
In the <Server> element,
change the following values:
port -
enter the port number of the secure port to which Access Manager listens (636
is the default).
type- change SIMPLE
to SSL.
-
Save and close serverconfig.xml.
-
Open the AMConfig.properties file
from the following default location:
/etc/opt/SUNWam/config.
Change the following properties:
-
com.iplanet.am.directory.port = 636 (if using
the default)
-
ssl.enabed = true
-
Save AMConfig.properties.
-
Restart the server