JSSE Provider Class
|
Specifies the fully qualified name of the JSSE provider class.
For more information, see the Sun Microsystems Java site at:
http://java.sun.com
|
The name of a valid JSSE provider class; the default is:
com.sun.net.ssl.internal.ssl.Provider
If you are running the Integration Server on AIX, specify:
com.ibm.jsse.IBMJSSEProvider
|
KeyStore
|
Specifies the default KeyStore file. The keystore is used for
key/certificate management when establishing SSL connections.
|
A valid package location. There is no default value. It is recommended
to use
c:\JavaCAPS\appserver\is\domains
MyDomain
\config\keystore.jks
|
where,
c:\JavaCAPS
is the directory where the
Sun Java Composite
Application Platform Suite
is installed and
MyDomain
is the name of your domain.
|
|
KeyStore password
|
Specifies the default KeyStore password. The password is used
to access the KeyStore used for key/certificate management when establishing
SSL connections; there is no default.
|
A valid KeyStore password.
There is no default value.
|
KeyStore type
|
Allows you to specify the default KeyStore type. The keystore
type is used for key/certificate management when establishing SSL
connections. If the KeyStore type is not specified, the default KeyStore
type, JKS, is used.
|
A valid KeyStore type.
|
KeyStore username
|
The user name for accessing the keystore used for key/certificate
management when establishing SSL connections.
Note –
If the keystore type is PKCS12 or JKS, the keystore user
name property is not used. PKCS12 and JKS keystore types require passwords
for access but do not require user names. If you enter a value for
this property, it is ignored for PKCS12 and JKS.
|
A valid KeyStore user name.
|
SSL Connection Type
|
Allows you to specify the type of SSL connection to be used.
|
Select None, Enable SSL, or TLS
On Demand.
Enter the desired value as follows:
-
None: No SSL, simple
plain connection.
-
Enable SSL: SSL
is enabled. All communication to the LDAP server uses a secure communication
channel.
Note –
If you are using the Enable SSL option, the ProviderURL
property must point to a secure LDAP port (the default is 636).
For additional information on required values for this property,
see SSL Connection Type.
|
SSL Protocol
|
The SSL protocol to use when establishing an SSL connection
with the LDAP server. See your JSSE documentation for information
on your App Server’s platform.
|
Select TLS, TLSv1, SSLv3, SSLv2, or SSL.
|
TrustStore
|
Specifies the default TrustStore. The TrustStore is used for
CA certificate management when establishing SSL connections.
|
A valid TrustStore file; there is no default.
|
TrustStore password
|
Allows you to specify the default TrustStore password. The password
is for accessing the TrustStore used for CA certificate management
when establishing SSL connections.
|
A valid TrustStore password; there is no default.
|
TrustStore type
|
Allows you to specify the TrustStore type of the TrustStore
used for CA certificate management when establishing an SSL connection.
If the TrustStore type is not specified, the default TrustStore type,
JKS, is used.
|
A valid TrustStore type.
|
Verify hostname
|
Determines whether the host name verification is done on the
server certificate during the SSL handshake.
You can use this property to enforce strict checking of the
server host name in the request URL and the host name in the received
server certificate.
|
Select True or False.
The default is False.
For additional information on required values for this property,
see Verify hostname.
|
X509 Algorithm Name
|
Specifies the X509 algorithm name to use for the trust and key
manager factories.
|
The name of a valid X509 algorithm;
the default is SunX509. If you are running the Integration Server
on AIX, specify IbmX509.
|