Configuring

Configuring and using CA DSI Server, CA LDAP Server, and CA PAM Client
cszscss
After installing the products, you must configure them. This section describes how administrators configure the CA DSI, CA LDAP, and CA PAM products.
  • CA DSI Server configuration tasks include:
    • Post-installation configuration
    • Verifying conversion table settings for Unicode Conversion Services (required starting with z/OS 1.9)
    • Customizing started task procedures for ESM-specific requirements
    • Setting up the configuration file, including using the Configuration Wizard, global options, and obsolete options
    • Configuring the CA DSI Server to support the Real-Time Compliance Information Analysis (CIA) feature
    • Securing server communications
    • Defining the Linux for Z Series configurations for CA ACF2 or CA Top Secret
    • Verifying the installation and configuration
  • CA LDAP Server configuration tasks include:
    • Customizing the slapd configuration file to control the global, backend, and database-specific options
    • Customizing started task procedures
    • Understanding access control concepts
    • Setting up the product-specific backend configurations
    • Converting the database; required between CA LDAP Version 12.0 and newer versions
    • Setting up certificate logon to perform operations using an X.509 digital certificate as credentials instead of a clear-text user ID and password
    • Configuring PassTickets
    • Setting up SSL from the command line
    • Migrating CA Compliance Manager from Version 1.0 to Version 2.0
  • CA PAM Client configuration tasks include:
    • Modifying the ESM configuration file to your site-specific standards
    • Starting the ESM proxy server during preliminary testing and during system startup
    • Enabling the NSS module
    • Enabling the CA PAM module