Use both Security Verify Access Java API and the Registry Direct API

Use both Security Verify Access Java API and the Registry Direct API

This section describes how to use SvrSslCfg to configure the Security Verify Access Java API and the Registry Direct API at the same time.
The SvrSslCfg that is provided in PD.jar is enhanced to permit simultaneous configuration of the current Java™ API and Registry Direct Java API.
Both configurations share the same LDAP identity and configuration properties file. This feature is useful if authorization is enabled in the new API, which requires the current API to provide the identity and configuration properties file.
If SvrSslCfg has –ldap_mgmt set to true, it creates a ISAM identity for the application, the identity is also added to the Security Verify Access group, SecurityGroup. This group membership gives the underlying LDAP identity the required privileges to administer user and groups in LDAP.SvrSslCfg and generates a random password, if a password is not supplied, for the identity. It obfuscates and stores the password in the configuration file. The underlying LDAP identity and password that are stored in the configuration file is used by the Registry Direct API to bind to LDAP to perform administration and authentication.
Parent topic: Configuration