9.4 Creating SSL Certificates

If SSL certificates are not present or have not been created, Identity Manager drivers might not start or function properly. We recommend using SSL certificates for encryption and secure information transfer between clusters and the Identity Manager vault. Create separate certificates for the Cluster Resource Synchronization driver and the User Synchronization driver.

IMPORTANT:You should create or use a different certificate than the default (dummy) certificate (BCC Cluster Sync KMO) that is included with BCC.

To create an SSL certificate:

  1. Start your Internet browser and enter the URL for iManager.

    The URL is http://server_ip_address/nps/iManager.html. Replace server_ip_address with the IP address or DNS name of the server that has iManager and the Identity Manager preconfigured templates for iManager installed.

  2. Specify your username and password, specify the tree where you want to log in, then click Login.

  3. In Roles and Tasks, click Identity Manager Overview, then click NDS-to-NDS Driver Certificates.

  4. Specify the requested driver information for this cluster, then click Next.

    You must specify the driver name (including the context) you supplied in Step 11 for this cluster. Use the following format when specifying the driver name:


    Ensure that there are no spaces (beginning or end) in the specified context, and do not use the cn=DriverName.ou=OrganizationalUnitName.o=OrganizationName format.

  5. Specify the requested driver information for the driver in the other cluster.

    Use the same format specified in Step 4.

  6. Click Next, then click Finish.