6.2 Enabling SSL Connection for Identity Manager Engine

Perform the following steps to enable SSL connectivity for the Identity Manager Engine:

  1. Login to the server where you have installed Identity Manager Engine.

  2. Go to /etc/opt/novell/eDirecotry/conf folder.

  3. Get the Sentinel Log Manager certificate and upload to keystore using the following command:

    echo | openssl s_client -connect <sentinel ip>:1443 2>&1 | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > slm.pem

  4. Edit the auditlogconfig.properties file. You must uncomment and update the appenders in the auditconfig.properties file. You can uncomment by removing the # before each property. For more information, see Understanding the auditlogconfig.properties File.

  5. Save the auditconfig.properties file and exit.

  6. Select those events that you want to audit from the driver set properties in iManager. For more information, see Selecting Events for the Driver Set.

  7. Restart Identity Vault using the following commands:

    ndsmanage stopall
    ndsmanage startall