Hi Matt,

just to clarify: you want an Active Directory to get access _to_ IdM using the LDAP protocol? I think you should use VDS for that, but beyond this I have no clue

In case you want IdM to connect to ActiveDirectory using SSL I have some steps to follow (not a real guide though):

1. SSL is already configured on MS-AD, you know the port (usually 636)

2. Change the LDAP_PORT in the repository

3. Example: InitialLoad Job - ReadFromLDAP Pass - Tab Source: Change Security Option to "SSL"

4. Import the Certificate used; herefore I like the tool "InstallCert.java" supplied by SUN, you can find it here: http://code.google.com/p/java-use-examples/source/browse/trunk/src/com/aw/ad/util/InstallCert.java

4.1 Compile the .java: javac.exe InstallCert.java

4.2 Run it: java InstallCert dc-host.domain.ext:636

4.3 Ignore the StackTrace (if any) and select the certificate

4.4 In the directory where you executed InstallCert you'll find a file jssecacerts

4.5 In IdM-MMC, check the Path to java, e.g. c:\jre6\bin\java.exe

4.6 Copy jssecacerts to c:\jre6\lib\security

5. InitialLoad - ReadFromLDAP-Pass works with SSL now (at least it did for me)

Hope this helps already

BR

Michael