Import CA certificate to a LifeCycle Manager keystore

The CA certificate must be imported before LDAPs can be enabled for communication between AD LDS and the LifeCycle Manager Server and AD LDS.

  1. Verify that the folder for the keystore exists.
  2. Create the keystore and import the CA certificate. For example, use the following command:

    D:\<path to jdk>\bin>keytool -import -file c:/dc5.cer -keystore "D:\Infor\LifeCycle Manager\LCM-Server\adam\ADAM_SSL/dc5" - storepass ChangeMe123 -storetype jks

    You must replace ChangeMe123 with your password.

    Note: 

    The Trust store password cannot end with @.

  3. Edit the following parameters in the lcm.properties file. The passwords for bind user and trust store will be encrypted the next time the LifeCycle Manager Server is restarted.
    # LDAP configurations
    ldap.validation=true
    ldap.server.0=seliw031.infor.com 
    ldap.port.0=636
    ldap.bind.user.0=cn=binduser,ou=lcm,dc=lcmadam,dc=net
    ldap.bind.password.0=##01WQ8/QAEA0iSnuVPKMIpkRQ==
    ldap.ssl.enabled.0=true
    ldap.trust.store=D:/Infor/LifeCycle Manager/LCM-Server/adam/ADAM_SSL/dc5
    ldap.trust.store.password=