Common Secure Interoperability transport inbound settings

Use this page to specify which listener ports to open and which SSL settings to use. These specifications determine which transport a client or upstream server uses to communicate with this server for incoming requests.

To view this administrative console page, click...

Security | Authentication Protocol | CSI Inbound Transport


Configuration tab

Transport Specifies whether client processes connect to the server using one of its connected transports.

You can choose to use either SSL, TCP/IP or both as the inbound transport that a server supports. If you specify TCP/IP, the server only supports TCP/IP and cannot accept SSL connections. If you specify SSL Supported, this server can support either TCP/IP or SSL connections. If you specify SSL-Required, then any server communicating with this one must use SSL.

If you specify SSL-Supported or SSL-Required, decide which set of SSL configuration settings you want to use for the inbound configuration. This decision determines which key file and trust file are used for inbound connections to this server.

By default, SSL ports for CSIv2 and SAS are dynamically generated. In cases where you need to fix the SSL ports on appservers, click...

Servers | Application Servers | server | End Points

Configure the following ports to be fixed. A zero port number indicates that a dynamic assignment is made at run time.


  • TCP/IP: Only a TCP/IP listener port is opened and all requests inbound do not have SSL protection.

  • SSL-Supported: Both a TCP/IP and SSL listener port are opened and most requests come inbound by SSL.

  • SSL-Required: Only an SSL listener port is opened, and all requests come through SSL connections. If you choose SSL-Required, also choose CSI as the active authentication protocol. If you choose CSI and SAS, SAS requires an open TCP/IP socket for some special requests.

Default... SSL-Supported
Range... TCP/IP, SSL Required, SSL-Supported

SSL settings Specifies a list of predefined SSL settings to choose from for inbound connections. These settings are configured at the SSL Repertoire panel.

Data type... String
Default... DefaultSSLSettings
Range... Any SSL settings configured in the SSL Configuration Repertoire