To Configure Access Manager to Connect to an SSL-Enabled Directory Server

1. Login to the Access Manager Console as amadmin.

2. Click the Configuration tab.

3. Under Authentication Service Name, click LDAP.

   On the LDAP pane:

   1. Under Primary LDAP Server, change the Directory Server port to the SSL port.

   2. For SSL Access to LDAP Server, click Enabled.

   3. Click Save.

4. Click Back to Configuration and then under Authentication Service Name, click Membership.

   On the Membership pane:

   1. Under Primary LDAP Server, change the Directory Server port to the SSL port.

   2. For SSL Access to LDAP Server, click Enabled.

   3. Click Save.

5. Click Back to Configuration and then under Global Properties, click Policy Configuration.

   On the Policy Configuration pane:

   1. Under Primary LDAP Server, change the Directory Server port to the SSL port.

   2. For LDAP SSL, click Enabled.

   3. Click Save and log out of the console.

6. In the serverconfig.xml file, change the following values in the <Server> element:

   • For port, specify the SSL port to which Access Manager listens (default is 636).

   • For type, change SIMPLE to SSL.

7. In the AMConfig.properties file, set the following properties:

   • com.iplanet.am.directory.port=636 (if you are using the default port)

   • com.iplanet.am.directory.ssl.enabed=true

8. Restart the Access Manager web container.

Configuration File Locations

The serverconfig.xml and AMConfig.properties files are in the following directory, depending on you platform:

• Solaris systems: /etc/opt/SUNWam/config

• Linux systems: /etc/opt/sun/identity/config