The Subscriber channel sends information from the Identity Vault to the Web service. To establish a secure connection for the Subscriber channel, you need a trust store containing a certificate issued by the certificate authority that signed the server’s certificate. See Configuring the Publisher Channel for an example.
Make sure you have a server certificate signed by a certificate authority.
Import the certificate into your trust store or create a new trust store by entering the following command at the command prompt:
keytool -import -file name_of_cert_file -trustcacerts -noprompt -keystore filename -storepass password
For example:
/opt/netiq/common/jre/bin/keytool -import -file tree_ca_root.b64 -trustcacerts -noprompt -keystore dirxml.keystore -storepass novell
For more information on keytool, see Keytool - Key and Certificate Management Tool.
Configure the Subscriber channel to use the trust store you created in Step 2:
In iManager, in the Roles and Tasks view, click Identity Manager > Identity Manager Overview.
Locate the driver set containing the REST driver, then click the driver’s icon to display the Identity Manager Driver Overview page.
On the Identity Manager Driver Overview page, click the driver’s icon again, then scroll to Subscriber Settings.
In the Keystore File setting, specify the path to the trust store you created in Step 2.
Click Apply, then click OK.