> We have an IDM 4.0.1 implementation where the Remote Loader is
> installed on a domain member Server (not on the DC)
> We would like to enable Password Reset from (IDM/UserApp)
> To secure the connection we must enable SSL on the Remote Loader (
> between IDM and R.L machine ) first

If you run the RL on a member server it talks to AD over LDAP and for
passwords to work, you need SSL configured. This is a configuration
setting as in Configuration on the driver side. It sort of depends on
the version of the driver config where it is exactly.

This is near the Sign, Seal settings.

> - My Question is about the connexion between R.L machine and the DC,
> are we required to enable LDAPS on the DC in order to flow passwords
> from IDM to Active Directory DC.
> - Does Active Directory Remote Loader use LDAP to perform operations on
> the DC ? or what mecanism is used ?

Yes, sort of.