gsk-attr-name
Use the gsk-attr-name stanza entry to specify additional GSKit attributes to use when initializing an SSL connection with the distributed session cache.
gsk-attr-name = {enum | string | number}:id:valueDescription
This configuration entry can be specified multiple times. Configure a separate entry for each GSKit attribute.
Options
{enum | string | number} The GSKit attribute type. id The identity associated with the GSKit attribute. value The value for the GSKit attribute.
Usage: Optional
See Appendix: Supported GSKit attributes for a list of GSKit attributes that can be configured.
You cannot configure the following restricted GSKit attributes:
GSK_KEYRING_FILE, GSK_KEYRING_PW, GSK_KEYRING_STASH_FILE, GSK_V2_SIDCACHE_SIZE, GSK_V3_SIDCACHE_SIZE, GSK_V2_SESSION_TIMEOUT, GSK_V3_SESSION_TIMEOUT, GSK_PROTOCOL_SSLV2, GSK_PROTOCOL_SSLV3, GSK_PROTOCOL_TLSV1, GSK_PROTOCOL_TLSV11, GSK_PROTOCOL_TLSV12, GSK_LDAP_SERVER, GSK_LDAP_SERVER_PORT, GSK_LDAP_USER, GSK_LDAP_USER_PW, GSK_CRL_CACHE_SIZE, GSK_CRL_CACHE_ENTRY_LIFETIME, GSK_ACCELERATOR_NCIPHER_NF, GSK_ACCELERATOR_RAINBOW_CS, GSK_PKCS11_DRIVER_PATH, GSK_PKCS11_TOKEN_LABEL, GSK_PKCS11_TOKEN_PWD, GSK_PKCS11_ACCELERATOR_MODE, GSK_BASE_CRYPTO_LIBRARY, GSK_OCSP_ENABLE, GSK_OCSP_URL, GSK_OCSP_NONCE_GENERATION_ENABLE, GSK_OCSP_NONCE_CHECK_ENABLE, GSK_OCSP_REQUEST_SIGKEYLABEL, GSK_OCSP_REQUEST_SIGALG, GSK_OCSP_PROXY_SERVER_NAME, GSK_OCSP_PROXY_SERVER_PORT, GSK_OCSP_RETRIEVE_VIA_GET, GSK_OCSP_MAX_RESPONSE_SIZE, GSK_USE_IO_EVENTS, GSK_USER_DATA, GSK_NO_RENEGOTIATION, GSK_ALLOW_ANY_RENEGOTIATION, GSK_ALLOW_ABBREVIATED_RENEGOTIATION, GSK_ALLOW_ONLY_EXTENDED_RENEGOTIATION,
If you attempt to modify any of these attributes then an error message will be generated.
Default: None.
Example:
The following entry is for the GSKit attribute GSK_HTTP_PROXY_SERVER_NAME, which has an identity value of 225:
gsk-attr-name = string:225:proxy.ibm.comSee also
gsk-attr-name
jct-gsk-attr-name
gsk-attr-name
Parent topic: [dsess-cluster] stanza