Key managers collection

Key managers collection

Use this page to define the implementation settings for key managers. A key manager is invoked during an SSL handshake to determine which certificate alias is used. The default key manager (WSX509KeyManager) performs alias selection. If more advanced function is desired, define a custom key manager on the Manage endpoint security configurations panel.
To view this console page, click Security > SSL certificate and key management > Manage endpoint security configurations > Inbound | Outbound > SSL_configuration_name. Under Related items, click Key managers.

Button Resulting action

New Adds a new key manager that can be selected by an SSL configuration. A key manager is invoked during an SSL handshake to select a specific certificate alias to use from a key store.
Delete Deletes an existing key manager. The key manager should not be referenced by any SSL configuration before you can delete it.

Name

Name of the key manager, which you can select on the SSL configuration panel.

Class name

Name of the key manager implementation class. This class implements javax.net.ssl.X509KeyManager interface and, optionally, the com.ibm.wsspi.ssl.KeyManagerExtendedInfo interface.

Algorithm

Specify the algorithm name of the key manager that is implemented by the selected provider.

Related tasks

Creating a Secure Sockets Layer configuration

Related Reference
Key managers settings

Reference topic

Button	Resulting action
New	Adds a new key manager that can be selected by an SSL configuration. A key manager is invoked during an SSL handshake to select a specific certificate alias to use from a key store.
Delete	Deletes an existing key manager. The key manager should not be referenced by any SSL configuration before you can delete it.