gsk-attr-name
gsk-attr-name = {enum | string | number}:id:valueDescription
Specify additional GSKit attributes to use when initializing an SSL connection with the client. A complete list of the available attributes is included in the GSKit SSL API documentation. This configuration entry can be specified multiple times. Configure a separate entry for each GSKit attribute.
Options
{enum | string | number} The GSKit attribute type. id The identity associated with the GSKit attribute. value The value for the GSKit attribute.
Usage: Optional
See Appendix: Supported GSKit attributes for a list of GSKit attributes that can be configured.
You cannot configure the following restricted GSKit attributes:
GSK_BASE_CRYPTO_LIBRARY GSK_SSL_FIPS_MODE_PROCESSING GSK_FIPS_MODE_PROCESSING GSK_OCSP_ENABLE GSK_OCSP_URL GSK_OCSP_NONCE_GENERATION_ENABLE GSK_OCSP_NONCE_CHECK_ENABLE GSK_OCSP_REQUEST_SIGKEYLABEL GSK_OCSP_REQUEST_SIGALG GSK_OCSP_PROXY_SERVER_NAME GSK_OCSP_PROXY_SERVER_PORT GSK_OCSP_RETRIEVE_VIA_GET GSK_OCSP_MAX_RESPONSE_SIZE GSK_KEYRING_FILE GSK_KEYRING_PW GSK_CRL_CACHE_SIZE GSK_CRL_CACHE_ENTRY_LIFETIME GSK_KEYRING_STASH_FILE GSK_KEYRING_LABEL GSK_LDAP_SERVER GSK_LDAP_SERVER_PORT GSK_LDAP_USER GSK_LDAP_USER_PW GSK_ACCELERATOR_NCIPHER_NF GSK_ACCELERATOR_RAINBOW_CS GSK_PKCS11_DRIVER_PATH GSK_PKCS11_TOKEN_LABEL GSK_PKCS11_TOKEN_PWD GSK_PKCS11_ACCELERATOR_MODE GSK_V2_SESSION_TIMEOUT GSK_V3_SESSION_TIMEOUT GSK_PROTOCOL_SSLV2 GSK_PROTOCOL_SSLV3 GSK_PROTOCOL_TLSV1 GSK_CLIENT_AUTH_TYPE GSK_SESSION_TYPE GSK_IO_CALLBACK GSK_RESET_SESSION_TYPE_CALLBACK GSK_RESET_SESSION_TYPE_CALLBACK GSK_NO_RENEGOTIATION GSK_ALLOW_ABBREVIATED_RENEGOTIATION
If you attempt to modify any of these attributes then an error message will be generated.
Default: None.
Example:
The following entry is for the GSKit attribute GSK_HTTP_PROXY_SERVER_NAME, which has an identity value of 225:
gsk-attr-name = string:225:proxy.ibm.comSee also
gsk-attr-name
gsk-attr-name
jct-gsk-attr-name