Novell Home

My Favorites

Close

Please to see your favorites.

How to configure iManager to make a SSL LDAP connection to a second tree

(Last modified: 12Mar2004)

This document (10091972) is provided subject to the disclaimer at the end of this document.

symptom

How to configure iManager to make a SSL LDAP connection to a second tree

fact

Novell eDirectory 8.7.3 for NetWare 6.5

Novell iManager 2

symptom

Unable to change simple password via iManager to a remote tree.

change

For iManager to make an SSL/TLS connection to a tree, Tomcat has to have the LDAP certificates imported to the keystore.
If multiple trees will be managed from a single iManager installation. Then a certificates need to imported to iManager from the server where the LDAP connection should me made.

fix

For Netware on the iManager Server, the following should be done to import the Certificates.
1)  Edit sys:\system\tckeygen.ncf  

java -classpath sys:/adminsrv/lib/tcnwutils.jar;sys:/adminsrv/lib/ecbldap.jar;sys:/adminsrv/lib/ecbsecurity.jar;sys:/adminsrv/lib/jdom.jar;sys:/adminsrv/lib/ecb.jar com.novell.application.tomcat.util.EDirectoryIntegrator -keystoreWork=true -keystore=sys:\adminsrv\conf\.keystore -keystorealias=mykey1 -keystorePass=apache -servername=localhost -secure=true

The following parameters should be changed to reflect your environment:
-servername=<LDAP_SERVER_IP>  Change to reflect LDAP server
-keystorealias=<Servername>   Can be any name; recommended to use the LDAP server name
   
2) Run tckeygen from the console to import the certificates.

3) Restart Tomcat.

4) Login to iManager and login to the different tree -  all administration tasks requiring an LDAP SSL connection can now be used.

disclaimer

The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information.
Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.

  • Document ID:
  • 10091972
  • Solution ID: NOVL96073
  • Creation Date: 10Mar2004
  • Modified Date: 12Mar2004
    • NovellManagement Products

Did this document solve your problem? Provide Feedback