SSL configuration settings

SSL configuration settings

To view SSL configuration settings...
Security | SSL certificate and key management | Configuration settings | Manage endpoint security configurations | {Inbound | Outbound} | nodes name | Related items | SSL configurations | New

Name Unique name of the SSL configuration within the management scope in which it resides. For ways to programmatically access the properties configured for this SSL configuration, see the com.ibm.websphere.ssl.JSSEHelper API.
(ZOS) Keyring name Name of the keyring for the System SSL configuration. This field implies the keystore and truststore. This field applies to System SSL repertoires only
Truststore name Reference to a specific truststore used by JSSE. The truststore holds signer certificates that validate the trust of certificates sent by remote connections during an SSL handshake.
Key store name Reference to a specific key store. The key store holds personal certificates that represent the identity of one side of a connection. The public key of this personal certificate is sent to the other side of the connection to establish trust during the handshake. The remote side of the connection needs the root certificate authority (CA) certificate or self-signed public key (signer) to be in the truststore to validate this personal certificate.
Get certificate aliases Queries the keystore for the aliases of all the personal certificates in the keystore from which to choose.
Default server certificate alias Certificate alias used as the identity for this SSL configuration if one has not been specified elsewhere. If we select None, the JSSE key manager determines which certificate is used. If multiple certificates exist in the key store, the key manager might not consistently select the same certificate.
Default client certificate alias Certificate alias to be used if this configuration is to be used as a client. If we select None, the JSSE key manager determines which certificate is used. If multiple certificates exist in the key store, the key manager might not consistently select the same certificate.
Management scope Scope where this SSL configuration is visible. For example, if we choose a specific node, then the configuration is visible only on that node and on any servers that are part of that node.

Create a Secure Sockets Layer configuration
SSL configurations collection
SecurityConfigurationCommands

Name	Unique name of the SSL configuration within the management scope in which it resides. For ways to programmatically access the properties configured for this SSL configuration, see the com.ibm.websphere.ssl.JSSEHelper API.
(ZOS) Keyring name	Name of the keyring for the System SSL configuration. This field implies the keystore and truststore. This field applies to System SSL repertoires only
Truststore name	Reference to a specific truststore used by JSSE. The truststore holds signer certificates that validate the trust of certificates sent by remote connections during an SSL handshake.
Key store name	Reference to a specific key store. The key store holds personal certificates that represent the identity of one side of a connection. The public key of this personal certificate is sent to the other side of the connection to establish trust during the handshake. The remote side of the connection needs the root certificate authority (CA) certificate or self-signed public key (signer) to be in the truststore to validate this personal certificate.
Get certificate aliases	Queries the keystore for the aliases of all the personal certificates in the keystore from which to choose.
Default server certificate alias	Certificate alias used as the identity for this SSL configuration if one has not been specified elsewhere. If we select None, the JSSE key manager determines which certificate is used. If multiple certificates exist in the key store, the key manager might not consistently select the same certificate.
Default client certificate alias	Certificate alias to be used if this configuration is to be used as a client. If we select None, the JSSE key manager determines which certificate is used. If multiple certificates exist in the key store, the key manager might not consistently select the same certificate.
Management scope	Scope where this SSL configuration is visible. For example, if we choose a specific node, then the configuration is visible only on that node and on any servers that are part of that node.