Key managers collection
Use this page to define the implementation settings for key managers. A key manager is invoked during an SSL handshake to determine which certificate alias is used. The default key manager (WSX509KeyManager) performs alias selection. If more advanced function is desired, define a custom key manager on the Manage endpoint security configurations panel.
From the admin console, click...
- Security > SSL certificate and key management > Configuration settings > Manage endpoint security configurations > {Inbound | Outbound} > ssl_configuration > Related items > Key managers
| Button | Resulting action |
|---|---|
| New | Add a new key manager that can be selected by an SSL configuration. A key manager is invoked during an SSL handshake to select a specific certificate alias to use from a key store. |
| Delete | Delete an existing key manager. The key manager should not be referenced by any SSL configuration before we can delete it. |
Name
Name of the key manager, which we can select on the SSL configuration panel.
Class name
The name of the key manager implementation class. This class implements javax.net.ssl.X509KeyManager interface and, optionally, the com.ibm.wsspi.ssl.KeyManagerExtendedInfo interface.
Algorithm
Algorithm name of the key manager implemented by the selected provider.