Properties For Mutual SSL Authentication (isAnonymous = false)
Mutual (two way) SSL authentication properties for a target operation.
Subject Identity Provider (SIP) properties are used if the
Is Anonymous flag is set to false for any service. API Exchange Gateway supports the mutual SSL authentication to access the service.
Properties
Table Mutual Authentication SSL Properties For service explains the properties for mutual SSL authentication (client authentication) for a service.
| Property | Description |
|---|---|
com.tibco.trinity.runtime.core.provider.identity.trust.trustStoreServiceProvider |
|
| Specifies that trust store service provider uses keystores for credentials. By default, this is configured to use internal implementation and should not be changed. It is configured as follows:
class:com.tibco.trinity.runtime.core.provider.credential.keystore |
|
com.tibco.trinity.runtime.core.provider.identity.trust.enableTrustStoreAccess: |
|
| Specifies that the [subject] identity provider has access to the trust store service provider. | |
com.tibco.trinity.runtime.core.provider.credential.keystore.truststore.keyStoreLocation |
|
| Specifies the location of the keystore. | |
com.tibco.trinity.runtime.core.provider.credential.keystore.truststore.keyStorePassword |
|
| Specifies the password to unlock the keystore. | |
com.tibco.trinity.runtime.core.provider.credential.keystore.truststore.keyStoreRefreshInterval |
|
| Specifies the refresh interval (milliseconds). | |
com.tibco.trinity.runtime.core.provider.credential.keystore.truststore.keyStoreType |
|
| Specifies the keystore type. Supported formats are JKS,PKCS12. | |
com.tibco.trinity.runtime.core.provider.identity.subject.identityStoreServiceProvider |
|
| Specifies that subject service provider uses keystores for credentials. By default, this is configured to use internal implementation and should not be changed. It is configured as follows:
class:com.tibco.trinity.runtime.core.provider.credential.keystore |
|
com.tibco.trinity.runtime.core.provider.identity.subject.trustStoreServiceProvider |
|
| Specifies that identity store service provider uses keystores for credentials. By default, this is configured to use internal implementation and should not be changed. It is configured as follows:
class:com.tibco.trinity.runtime.core.provider.credential.keystore |
|
com.tibco.trinity.runtime.core.provider.identity.subject.keyAlias |
|
| Specifies an alias name for the key corresponding to the private credentials in the credential store for establishing the subject's identity. | |
com.tibco.trinity.runtime.core.provider.identity.subject.keyPassword |
|
| Specifies the protection parameter of the private credentials in the credential store for establishing the subject's identity. | |
com.tibco.trinity.runtime.core.provider.credential.keystore.keyStoreType |
|
| Specifies the keystore type of the private credentials. | |
com.tibco.trinity.runtime.core.provider.credential.keystore.keyStoreLocation |
|
| Specifies the location of the keystore of the private credentials. | |
com.tibco.trinity.runtime.core.provider.credential.keystore.keyStorePassword |
|
| Specifies the password to unlock the keystore. | |
com.tibco.trinity.runtime.core.provider.credential.keystore.keyStoreRefreshInterval |
|
| Specifies the refresh interval in milliseconds. | |
Copyright © Cloud Software Group, Inc. All rights reserved.