How to Integrate OpenAM 7.4.0 with OpenIDM 7.4.1 for User Authentication? Encountering Connection Error

Troubleshooting
, , ,
12

Dear @patrick_diligent,

Thanks a lot for your valuable reply.

Based on your reply, I started working on setting up a shared identity store with OpenAM, OpenIDM, and OpenDJ to achieve SSO functionality. While I have successfully established connectivity between OpenIDM and OpenDJ, I am encountering an issue where OpenAM fails to connect to OpenDJ.

Setup Details:

  1. Components:

    • OpenAM (Authentication Manager)
    • OpenIDM (Identity Manager)
    • OpenDJ (LDAP server)

  2. Objective:

    • Configure OpenDJ as the common datastore for both OpenAM and OpenIDM.
    • Ensure proper security settings.
    • Disable user self-registration.
    • Manage users using the OpenIDM API.
    • Authenticate users for applications using OpenAM.

Configuration Steps:

  1. OpenDJ Configuration:

    • Created deployment ID using dskeymgr.
    • Set up DS with necessary profiles and passwords.
    • Started DS and exported the CA certificate.
    • Encountered an issue with dskeymgr missing in the OpenDJ Docker image, resolved by using the latest DS version.

  2. OpenIDM Configuration:

    • Updated boot.properties with openidm.host.
    • Imported the OpenDJ CA certificate into OpenIDM.

  3. OpenAM Configuration:

    • Installed Tomcat and deployed the openam.war file.
    • Accessed the web UI and followed the steps for configuration.

Status:

  • OpenIDM is successfully connected to OpenDJ.
    • Verified by creating and listing identities in OpenDJ using ldapsearch.

Issue:
Despite successful IDM and DJ connectivity, OpenAM fails to connect to OpenDJ. The error details are captured in the screenshot attached.

Screenshot:

image
image1850×968 70.2 KB

Query:
I would appreciate any insights or suggestions on resolving the connectivity issue between OpenAM and OpenDJ. Specifically:

  • Are there any additional configurations required for OpenAM to connect to OpenDJ that might have been missed?

  • What would be this encryption key in the below screenshot? I am getting an auto generated value in that field. Is that okay or should I replace it with somthing from OpenDJ?
    Since I cannot add more than one screenshot in a single post, I will attach it as another reply

  • Could there be any specific permissions or settings in OpenDJ that need adjustment for OpenAM?

  • Any troubleshooting steps or logs that could help diagnose the issue further?

Thank you in advance for your support!