Importing an LDAPS Certificate for the PowerDesigner Portal

If you are required to connect to your LDAP server using SSL, then you must request a certificate from the LDAP server administrator and import it into your PowerDesigner Portal installation. Importing the certificate allows the PowerDesigner Portal to contact the LDAPS server to authorize users wanting to connect.

This procedure explains the process for importing the certificate into the default Tomcat keystore file at install_dir/keystore/common.keystore. For security purposes, we recommend that you generate your own key and keystore file. The keystore information is saved in the following file: install_dir/keystore/config/cmrcommon.xml.

  1. [recommended] Create a backup of the JRE certificates file, $JAVA_HOME\jre\lib\security\cacerts.
  2. Copy the LDAP server certificate to $JAVA_HOME\jre\lib\security.
  3. Import the certicate into the keystore with the command:
    keytool -import -file certificate_name.pem -keystore cacerts
  4. Enter the keystore password to complete the import.
  5. Restart the PowerDesigner Portal to allow it to obtain the certificate.
Parent topic: PowerDesigner Portal Server Settings