To use SSL, each instance of tibemsd must have a digital certificate and a private key. The server can optionally require a certificate chain or trusted certificates.
Set the server to listen for SSL connections from clients by using the listen parameter in
tibemsd.conf. To specify that a port accept SSL connections, specify the SSL protocol in the
listen parameter as follows:
Several SSL parameters can be set in tibemsd.conf. The minimum configuration is only one required parameter—
ssl_server_identity. However, if the server’s certificate file does not contain its private key, then you must specify it in
ssl_server_key.
SSL Server Parameters provides a complete description of the SSL parameters that can be set in
tibemsd.conf.
When starting tibemsd, you can specify the following options: