TLS Authorization Parameters
Parameters allowed in the authorization file. These parameters must be defined in upper case.
Parameter | Description |
---|---|
/CN | Defines the Common Name (CN) in the certificate. This is usually the name of the person or computer initiating the transfer request. Generic entries are supported. |
/OU | Defines the Organization Unit (OU) in the certificate. This is also known as the Department. Generic entries are supported. |
/O | Defines the Organization (O) in the certificate. This is also known as the Company. Generic entries are supported. |
/L | Defines the Locality (L) in the certificate. This is also known as the City. Generic entries are supported. |
/ST | Defines the State/Province (ST) in the certificate. Generic entries are supported. |
/C | Defines the Country (C) in the Certificate. Generic entries are supported. |
/SN | Defines the Serial Number (SN) in the certificate. Generic entries are NOT supported. |
/SDATE | Defines the Start Date (SDATE) for the certificate in the format: ccyymmdd. Generic entries are NOT supported. The start date is compared against the date that the transfer request is received by MFT Platform Server. If the start date is before the current date, then SSLAUTH processing checks the next parameter. If the start date is after the current date, then the transfer request is terminated and an error is sent to the remote system. |
/STIME | Defines the Start Time (STIME) for the certificate in the format: hhmm. Generic entries are NOT supported. The start time is only checked if the SDATE parameter exactly matches the current date. The start time is compared against the time that the transfer request is received by MFT Platform Server. If the start time is before the current time, then SSLAUTH processing checks the next parameter. If the start time is after the current time, then the transfer request is terminated and an error is sent to the remote system. |
/EDATE | Defines the End Date (EDATE) for the certificate in the format: ccyymmdd. Generic entries are NOT supported. The end date is compared against the date that the transfer request is received by MFT Platform Server. If the end date is after the current date, then SSLAUTH processing checks the next parameter. If the end date is before the current date, then the transfer request is terminated and an error is sent to the remote system. |
/ETIME | Defines the End Time (ETIME) for the certificate in the format: hhmm. Generic entries are NOT supported. The end time is only checked if the EDATE parameter exactly matches the current date. The end time is compared against the time that the transfer request is received by MFT Platform Server. If the end time is after the current time, then SSLAUTH processing checks the next parameter. If the end time is before the current time, then the transfer request is terminated and an error is sent to the remote system. |
/USER | This parameter is supported only by the IBM i and z/OS system. It allows the administrator to define a user ID that must be used when an SSL certificate is accepted. This user ID overrides the user ID associated with the file transfer. Using this option, the remote user does not have to have any knowledge of a user ID and password on this system. |
Copyright © Cloud Software Group, Inc. All rights reserved.