Refreshing a client's view of the SSL key repository contents and SSL settings

Home

Refreshing a client's view of the SSL key repository contents and SSL settings

If changes are made on a client machine to the contents or location of the SSL key repository, the authentication information, the cryptographic hardware parameters, or the FIPS-certified cryptography setting, all the SSL connections must be ended. Once they are all ended they can be restarted and will reflect the changes made. A client application, especially a long running application, should therefore be written in such a way that its SSL connections can be stopped and restarted without forcibly breaking the connection to the queue manager. However, if this cannot be done, an application can be forcibly closed. In either case, when the SSL channels restart all the new SSL settings will be used. These settings are the same as those refreshed by the REFRESH SECURITY TYPE(SSL) command (see WebSphere MQ Script (MQSC) Command Reference).

Home