Under this section, define the following server SSL settings.
client-auth
The client authentication requirement. See the following table for the supported values.
Value | Description |
|---|---|
Need | Client authentication is mandatory. |
Want | Client authentication is wanted but not mandatory. |
None | Client authentication is not wanted. |
Mandatory: Yes.
enabled
true to enable SSL/TLS, false otherwise.
Mandatory: No. This optional parameter defaults to true.
key-alias
The alias of the SSL key in the keystore.
Mandatory: Yes.
key-store
The path of the keystore that contains the SSL server certificate.
See Configuring CA Gateway for how to reference file paths.
Mandatory : Yes.
key-store-type
The type of keystore containing the SSL server certificate.
Type | Description |
|---|---|
jks | Java keystore |
pkcs12 | PKCS #12 keystore |
Mandatory: Yes.
protocol
Set this parameter to:
TLS Mandatory: Only when enabled is true.
trust-store
The full path of the truststore that contains the CA certificates.
See Configuring CA Gateway for how to reference file paths.
Mandatory: Yes.
trust-store-password
The password of the truststore that contains the CA certificates.
Mandatory: Yes.
trust-store-type
The type of truststore containing the CA certificates.
Type | Description |
|---|---|
jks | Java truststore |
pkcs12 | PKCS #12 truststore |
Mandatory: Yes.