NetIQ Access Manager 4.0
According to http://heartbleed.com/ (no idea if this is a reliable source) the following OpenSSL versions are vulnerable:
OpenSSL 1.0.1 through 1.0.1f (inclusive) are vulnerable
The following are not vulnerable:
OpenSSL 1.0.1g is NOT vulnerable
OpenSSL 1.0.0 branch is NOT vulnerable
OpenSSL 0.9.8 branch is NOT vulnerable
With the Access Gateway Service available on non SLES platforms such as Windows or RHEL, the AGS Install pushes down and uses it's own openssl libraries that are all based on the 0.98 branch too, and therefor not susceptible.
NAM 4.0 HF1 does provide administrators with the option of using an updated openssl 1.0.1f, which is vulnerable. The only way of installing this openssl is by manually copying openssl and apache files to the NAM hosts and restarting the box. This vulnerability is being fixed in NAM 4.0 HF2 builds (April 11 2014 release) and newer.
To test whether your site is vulnerable, simply go to https://www.ssllabs.com/ssltest and put in your public domain in there before running the test.