25.1 Importing a Trusted Root to the LDAP User Store

When you specify the settings of a user store for an Identity Server configuration, or add a user store, you can import the trusted root certificate to the LDAP user store device.

  1. In the Administration Console, click Identity Servers > Edit > Local > [User Store].

  2. Under Server Replicas, click the name of the server replica.

    Importing a trusted root

  3. Enable the Use secure LDAP connections option.

    This option allows SSL communication to occur between the Identity Server and the user store.

  4. Click Auto import trusted root.

  5. Click OK to confirm the import.

    Ensure that you have pop-ups enabled, or the browser cannot display the Confirm dialog box.

    Select a trusted certificate

  6. Select one of the certificates in the list.

    You are prompted to choose either a server certificate or a root CA certificate. To trust one certificate, choose Server Certificate. Choose Root CA Certificate to trust any certificate signed by that certificate authority.

  7. Specify an alias, then click OK.

    You use the alias to identify the certificate in Access Manager.

  8. On the User Store page, click OK.

  9. Restart the Identity Server.