In the integration of CA PAM with CA IM using the correct certificates, in the CA IM user console show the error: code 53 (UNWILLING_TO_PERFORM): failed to add entry eTDYNDirectoryName=PAM Server,eTNamespaceName=CA Privileged Access Manager,dc=im,dc=etasa: JCS@Serverxxxx01: PAM: peer not authenticated (ldaps://10.20x.***.***:20411). In the CA IAM CS exist The root certificate of the certificate authority that has issued the CA PAM certificate and the CA PAM certificate established in each one member of cluster. What could be happening that in the end of process show error.
I am not sure if you are try to do the same thing, but I found another thread in the PAM community of someone trying to integrate Identity Manager with PAM. Take a look at it: CA PAM end point creation in CA Identity Manager