SSL Properties for Config UI
List of SSL properties for Config UI.
The following table explains the SSL properties to specify the keystore configuration for using the HTTPs transport:
| Property | Description |
|---|---|
| java.property.com.tibco.asg.designtime.configui.launcher.secure | To enable SSL connection, set this property to true. |
| java.property.com.tibco.asg.designtime.configui.launcher.SSLEnabled | Enables the SSL communication. Set this property to true to use HTTPs transport.
The default value is false. If this property is set to true, it requires the scheme and secure properties to be set correctly for HTTPs transport. |
| java.property.com.tibco.asg.designtime.configui.launcher.scheme | Set this property to the name of the protocol for SSL.
Set this to https. |
| java.property.com.tibco.asg.designtime.configui.launcher.keyAlias | The alias used to specify the server certificate in the keystore. If not specified the first key read in the keystore is used. |
| java.property.com.tibco.asg.designtime.configui.launcher.keystoreFile | The path to the keystore file. The keystore file contains the server certificates. The JKS format keystore type is supported.
For example, C:/tibco/keystores/config.jks By default, the path name is the .keystore file. The file is stored in the home directory of the user who is running Tomcat server. |
| java.property.com.tibco.asg.designtime.configui.launcher.keystoreType | Specifies the keystore type of the private credentials. Supported formats are JKS,PKCS12. For example, JKS. |
| java.property.com.tibco.asg.designtime.configui.launcher.keystorePass | The password used to access the server key from the specified keystore file. |
| java.property.com.tibco.asg.designtime.configui.launcher.sslProtocol | The version of the SSL protocol to use. If not specified, the default value is TLS.
The following SSL protocols are supported: SSL,SSLv3,TLSv1,TLSv1.1, TLSv1.2 |
| java.property.com.tibco.asg.designtime.configui.launcher.server | Overrides the server header information for the http response.
If this property is set, the value for this attribute overrides the default header of Tomcat or any server set by a web application. For example, Apache. If this property is not set, any value specified by the application is used. If the application does not specify a value, Apache-Coyote/1.1 is used by default. |
| Mutual SSL Properties
Set the following properties only for two-way (mutual) SSL authentication. |
|
| java.property.com.tibco.asg.designtime.configui.launcher.clientAuth | Specifies a boolean flag to enable or disable the mutual(two-way) SSL authentication for HTTPS transport between the client and the Config UI. When this field is set to true, set the java.property.com.tibco.asg.designtime.configui.launcher.truststoreFile property to specify a file containing the list of trusted certificate authorities. |
| java.property.com.tibco.asg.designtime.configui.launcher.truststoreFile | Specifies a file containing one or more certificates from trusted certificate authorities, which is required for mutual SSL authentication. You must set this property when the java.property.com.tibco.asg.designtime.configui.launcher.clientAuth property is set to true. |
| java.property.com.tibco.asg.designtime.configui.launcher.truststorePass | Specifies the password to access the certificate file defined by the java.property.com.tibco.asg.designtime.configui.launcher.truststoreFile property. |
| java.property.com.tibco.asg.designtime.configui.launcher.truststoreType | Specifies the type of trusted store file. Supported formats are JKS,PKCS12. |