IBM Content Manager, Version 8.5.0.3      Supports:  IBM Content Navigator     

Enabling SSL for LDAP server communication

For added security, you can configure Secure Sockets Layer (SSL) for LDAP user authentication.

Use this procedure for Windows, AIX®, or Solaris operating systems.

Important: If the library server is on a Linux operating system and you want to use the LDAP user import and authentication function, do not enable SSL during the LDAP configuration. The SSL function for LDAP on Linux is not supported. Open the cmbcenv.properties file and make sure that LDAP_SECURITY_PROTOCOL=none instead of LDAP_SECURITY_PROTOCOL=ssl.

There are four steps required to configure SSL for LDAP user authentication.

  1. Creating the key database file
    The first step to enable SSL for LDAP is to create the key database file. You must start the ikeyman utility.
  2. Configuring the system administration client for SSL communication
    You must configure the system administration client to enable SSL for LDAP. Content Manager EE no longer configures SSL automatically.
  3. Configuring the library server for SSL communication with the LDAP server
    You must configure the library server to enable SSL for LDAP.
  4. Configuring the resource manager for SSL communication with the LDAP server
    You must configure the resource manager to enable SSL for LDAP.
Parent topic: Integrating LDAP with Content Manager EE
Previous topic: Installing prerequisite software for LDAP user authentication
Next topic: Validating an LDAP user logon

Last updated: June 2015
mua10213.htm

© Copyright IBM Corporation 2015.