Book: How to Configure Identity Management Revision: n_1415593_how-to-configure-identity-management-in-jboss-enterprise-application-platform-6_version_6.4_edition_1.0_release_0-revision_1 Section: 2.2. 2. Configuring a Security Realm for the Outbound LDAP Connection Issue description: There is no information about what is stored in Security Realm defined keystore and truststore, which customer needs for correct setup. Suggestions for improvement: Add information about keystore and truststore: Security Realm defined keystore contains key that the EAP server will be using to verify itself against LDAP. Security Realm defined truststore contains the LDAP server certificate or the certificate of the certificate authority used to sign the LDAP servers certificate.