Configure SSL

This button allows you to configure the SSL connection parameters for connecting to the SOAP server. This button brings up a dialog with the following fields:

Field

Description

Trusted Certificates Folder

Folder in the project containing one or more certificates from trusted certificate authorities. This folder is checked when connecting to a server to ensure that the connection is to a server that is trusted. This prevents connections to rogue servers that attempt to impersonate trusted servers.

Identity

This is an Identity resource that contains the client’s digital certificate and private key.

For more information, see TIBCO Designer™ Palette Reference.

Verify Host Name

This field specifies that the host name of the SOAP server should be checked against the host name listed in the server’s digital certificate. This provides additional verification that the host name you believe you are connecting to is in fact the desired host.

If the host name specified in the Endpoint URL field on the Configuration tab is not an exact match to the host name specified in the server’s digital certificate, the connection is refused.

Note: If you specify an equivalent hostname (for example, an IP address) in the Endpoint URL field, but the name is not an exact match of the hostname in the host’s digital certificate, the connection is refused.

Strong Cipher Suites Only

When checked, this field specifies that the minimum strength of the cipher suites used can be specified with the bw.plugin.security.strongcipher.minstrength custom engine property. For more information about this property, see TIBCO ActiveMatrix BusinessWorks™ Administration. The default value of the property disables cipher suites with an effective key length below 128 bits.

When this field is unchecked, only cipher suites with an effective key length of up to 128 bits can be used.