JSSE Provider Class
|
Specifies the fully qualified name of the JSSE provider class. For more
information, see the Sun Microsystems Java site at:
http://java.sun.com/
|
The name of a valid JSSE provider class; the default is:
com.sun.net.ssl.
internal.ssl.Provider
|
If you are running the Integration Server on AIX, specify:
com.ibm.jsse.
IBMJSSEProvider
|
|
KeyStore
|
Specifies the default KeyStore file. The keystore is used for key/certificate
management when establishing SSL connections.
|
A valid package location; there is no default value.
|
KeyStore password
|
Specifies the default KeyStore password. The password is used to access
the KeyStore used for key/certificate management when establishing SSL connections;
there is no default.
|
A valid KeyStore password. There
is no default value.
|
KeyStore type
|
Allows you to specify the default KeyStore type. The keystore type is
used for key/certificate management when establishing SSL connections. If
the KeyStore type is not specified, the default KeyStore type, JKS, is used.
|
A valid KeyStore type.
|
KeyStore username
|
The user name for accessing the keystore used for key/certificate management
when establishing SSL connections.
Note –
If the keystore type is PKCS12 or JKS, the keystore user name
property is not used. PKCS12 and JKS keystore types require passwords for
access but do not require user names. If you enter a value for this property,
it is ignored for PKCS12 and JKS.
|
A valid KeyStore user name.
|
SSL Connection Type
|
Allows you to specify the type of SSL connection to be used.
|
Select None, Enable SSL, or TLS On Demand. Enter the desired value as
follows:
-
None: No SSL, simple plain
connection.
-
Enable SSL: SSL is enabled.
All communication to the LDAP server uses a secure communication channel.
Note –
If you are using the Enable SSL option, the ProviderURL property
must point to a secure LDAP port (the default is 636).
For additional information on required values for this property, see
SSL Connection Type.
|
SSL Protocol
|
The SSL protocol to use when establishing an SSL connection with the
LDAP server.
|
Select one of the following:
-
TLS
-
TLSv1
-
SSLv3
-
SSLv2
-
SSL
|
TrustStore
|
Specifies the default TrustStore. The TrustStore is used for CA certificate
management when establishing SSL connections.
|
A valid TrustStore file; there is no default value.
|
TrustStore password
|
Allows you to specify the default TrustStore password. The password
is for accessing the TrustStore used for CA certificate management when establishing
SSL connections.
|
A valid TrustStore password; there is no default value.
|
TrustStore type
|
Allows you to specify the TrustStore type of the TrustStore used for
CA certificate management when establishing an SSL connection. If the TrustStore
type is not specified, the default TrustStore type, JKS, is used.
|
A valid TrustStore type.
|
Verify hostname
|
Determines whether the host name verification is done on the server
certificate during the SSL handshake.
You can use this property to enforce strict checking of the server host
name in the request URL and the host name in the received server certificate.
|
Select True or False.
The default is False.
For additional information on required values for this property, see Verify Hostname.
|
X509 Algorithm Name
|
Specifies the X509 algorithm name to use for the trust and key manager
factories.
|
The name of a valid X509 algorithm.
The default is SunX509.
If you are running the Integration Server on AIX, specify IbmX509.
|