You can connect to an LDAP server that uses an SSL certificate signed by a certificate authority (CA). By default, the Service Manager does not connect to an LDAP server that uses a self-signed certificate.
To connect to an LDAP server that uses an SSL certificate, use the Java keytool key and certificate management utility to import the certificates used by all domain nodes into the Java
cacerts
truststore file on a single gateway node in the domain. You then copy the
cacerts
keystore file that contains the imported certificates to the other nodes in the domain.
The
cacerts
truststore file is in the following directory on each node: