The server_osgi_jcs.xml file contains the following configuration settings:
Specifies the client certificate store for CA IAM CS. The value is a path to the file which contains trusted certificates that are used to verify the identity of the endpoint server during SSL handshakes. Used for outbound TLS connections that the connectors make themselves, to the endpoint systems they manage. Import any issuer certificates for the endpoints to which TLS connections into this store.
Specifies the certificate store type (JKS or PKCS12).
Specifies the password protecting the connector client store. The same rules apply as for the ldapsCertificatePassword.
During SSL handshakes the peer certificate that the endpoint sends is not verified for trust. That is, the connectorClientCertStore value is ignored and not required for outbound SSL connections in this configuration.
The endpoint host certificate that is presented to CA IAM CS undergoes trust checks against connectorClientCertStore contents.
When TRUE, sends SSL information to a log file.
Enables or disables the HTTP proxy, and configures the proxy details. Use a proxy if CA IAM CS must communicate with other computers outside the network.
The HTTP proxy can be configured when CA IAM CS is installed. You can change it later by updating this value in the configuration file.
|
Copyright © 2013 CA.
All rights reserved.
|
|