tadm set-pkcs11-prop common_options --config=config_name (property_name=property_value)+
Use this command to set the PKCS#11 properties. Oracle® Traffic Director introduces an option to instruct Network Security Services (NSS) to bypass the PKCS#11 layer during parts of the SSL/TLS processing. Bypassing the PKCS#11 layer improves performance.
For information about common_options
, run the help command.
--config|-c
Specify the name of the configuration to set the PKCS#11 properties.
property-name=property-value
Specify name=value
pairs for one or more properties that you want to define. The name=value
pairs should be separated by spaces.
You can set the following PKCS#11 properties:
enabled
: Specifies whether the server initializes PKCS#11 tokens, prompting for personal identification numbers (PINs) as necessary.
Values: Default is true
if SSL is enabled and false
if SSL is disabled.
crl-path
: Specifies the directory that contains dynamically updated CRL files.
Values: Name of the directory. If a relative path is used, it is relative to the server's config
directory.
allow-bypass
: If enabled, the PKCS#11 layer is bypassed during parts of the SSL/TLS processing. Bypassing the PKCS#11 layer enhances performance.
Values: true
, false
. Default: true
.
To reset a property to its default value, do not provide a property value.
For example, property-name=<empty_string>
tadm set-pkcs11-prop --user=admin --host=admin.example.com --password-file=./admin.passwd --port=8989 --no-prompt --config=www.example.org enabled=false
The following exit values are returned:
0: command executed successfully
>0: error in executing the command
For more information about exit codes and syntax notations, run the help command.
help, get-pkcs11-prop, list-tokens, set-token-prop, set-token-pin