Properties For Mutual SSL Authentication (isAnonymous = false)
Mutual (two way) SSL authentication properties for a target operation.
Subject Identity Provider (SIP) properties are used if the
Is Anonymous flag is set to false for any service. API Exchange Gateway supports the mutual SSL authentication to access the service.
Properties
Table Mutual Authentication SSL Properties For service explains the properties for mutual SSL authentication (client authentication) for a service.
| Property | Description |
|---|---|
com.tibco.trinity.runtime.core.provider.identity.subject.identityStoreServiceProvider |
|
| Specifies that subject service provider uses keystores for credentials. By default, this is configured to use internal implementation and should not be changed. It is configured as follows:
class:com.tibco.trinity.runtime.core.provider.credential.keystore |
|
com.tibco.trinity.runtime.core.provider.identity.subject.trustStoreServiceProvider |
|
| Specifies that identity store service provider uses keystores for credentials. By default, this is configured to use internal implementation and should not be changed. It is configured as follows:
class:com.tibco.trinity.runtime.core.provider.credential.keystore |
|
com.tibco.trinity.runtime.core.provider.identity.subject.keyAlias |
|
| Specifies an alias name for the key corresponding to the private credentials in the credential store for establishing the subject's identity. | |
com.tibco.trinity.runtime.core.provider.identity.subject.keyPassword |
|
| Specifies the protection parameter of the private credentials in the credential store for establishing the subject's identity. | |
com.tibco.trinity.runtime.core.provider.identity.subject.enableCredentialStoreAccess |
|
| By default, this is configured to use internal implementation and should not be changed. | |
com.tibco.trinity.runtime.core.provider.identity.subject.enableTrustStoreAccess |
|
| By default, this is configured to use internal implementation and should not be changed. | |
com.tibco.trinity.runtime.core.provider.credential.keystore.keyStoreLocation |
|
| Specifies the location of the keystore of the private credentials. | |
com.tibco.trinity.runtime.core.provider.credential.keystore.keyStorePassword |
|
| Specifies the password to unlock the keystore. | |
com.tibco.trinity.runtime.core.provider.credential.keystore.keyStoreType |
|
| Specifies the keystore type of the private credentials. | |
com.tibco.trinity.runtime.core.provider.credential.keystore.keyStoreRefreshInterval |
|
| Specifies the refresh interval in milliseconds. | |
com.tibco.trinity.runtime.core.provider.identity.trust.trustStoreServiceProvider |
|
| By default, this is configured to use internal implementation and should not be changed. | |
com.tibco.trinity.runtime.core.provider.identity.trust.enableTrustStoreAccess |
|
| By default, this is configured to use internal implementation and should not be changed. | |
com.tibco.trinity.runtime.core.provider.credential.keystore.truststore.keyStoreType |
|
| Specifies the keystore type. Supported formats are JKS,PKCS12. | |
com.tibco.trinity.runtime.core.provider.credential.keystore.truststore.keyStoreRefreshInterval |
|
| Specifies the refresh interval (milliseconds). | |
com.tibco.trinity.runtime.core.provider.credential.keystore.truststore.keyStoreLocation |
|
| Specifies the location of the keystore. | |
com.tibco.trinity.runtime.core.provider.credential.keystore.truststore.keyStorePassword |
|
| Specifies the password to unlock the keystore. | |
Copyright © Cloud Software Group, Inc. All rights reserved.