Environment
Novell Identity Manager 3.6.1
Situation
While trying to provision a credential to SecretStore via IDM action "Set SSO Credential", the following error occurs in the trace:
[07/01/09 20:50:31.974]:LoopBack-SSO ST:
DirXML Log Event -------------------
Driver: \SSO-TREE\services\driverset\LoopBack-SSO
Channel: Subscriber
Status: Error
Message: Code(-9186) Error in vnd.nds.stream://SSO-TREE/services/driverset/LoopBack-SSO/Subscriber/Add+SSO+Credential+on+user+add#XmlData:11 : Couldn't perform SSO operation <do-set-sso-credential>: '2222:ERROR (provisionSecretStoreAccount): LDAP Context Initialization Exception: java.lang.Exception: java.lang.NullPointerException'.
[07/01/09 20:50:31.974]:LoopBack-SSO ST:
DirXML Log Event -------------------
Driver: \SSO-TREE\services\driverset\LoopBack-SSO
Channel: Subscriber
Status: Error
Message: Code(-9186) Error in vnd.nds.stream://SSO-TREE/services/driverset/LoopBack-SSO/Subscriber/Add+SSO+Credential+on+user+add#XmlData:11 : Couldn't perform SSO operation <do-set-sso-credential>: '2222:ERROR (provisionSecretStoreAccount): LDAP Context Initialization Exception: java.lang.Exception: java.lang.NullPointerException'.
Resolution
To fix the issue, make sure that the parameter "SecretStore Server SSL Port" has your server's LDAP SSL port, and that the parameter "SecretStore Server SSL Certificate Path" has the full path to the trusted root certificate of the CA that created the LDAP SSL certificate (in most cases this will be eDirectory's CA own self-signed certificate). The certificate must be exported in DER format for the action to work.