To perform certificate-based authentication, use the –c option with the ldm migrate-domain command. This option is mutually exclusive with the password file and alternate user options. If the –c option is not specified, the migration operation performs password authentication.
To configure SSL certificates, you must perform the steps in this task on both the source machine and the target machine.
The remote ldmd certificate is the /var/opt/SUNWldm/server.crt on the remote host. The local ldmd trusted certificate directory is /var/opt/SUNWldm/trust. Call the remote certificate file remote-hostname.pem.
Set the REMOTE variable to remote-host.
localhost# ln -s /var/opt/SUNWldm/trust/${REMOTE}.pem /etc/certs/CA/
localhost# svcadm restart svc:/system/ca-certificates
localhost# openssl verify /var/opt/SUNWldm/trust/${REMOTE}.pem /var/opt/SUNWldm/trust/remote-hostname.pem: OK
localhost# svcadm restart ldmd