Administer > System configuration parameters > Servlet parameters > Parameter: ssl_trustedClientsJKS

Parameter: ssl_trustedClientsJKS

Startup parameters change the behavior of the Service Manager server. You can always set a startup parameter from the server's operating system command prompt.

Parameter

ssl_trustedClientsJKS

Description

This parameter defines the path and file name to the Java keystore containing the list of trusted client certificates from which the Service Manager server allows connection requests. When you enable the ssl_reqClientAuth parameter with any of the servlet implementations, only the clients with signed certificates in this keystore can connect to the Service Manager server. This keystore contains a copy of each client's signed certificate. All servlet implementation options require access to certificates stored in Java keystore formats.

Valid if set from

Server's operating system command prompt

Initialization file (sm.ini)

Requires restart of the Service Manager server?

No

Default value

None

Possible values

Path and file name of the Java keystore containing the list of trusted client certificates

Example usage

Command line: sm -httpPort:13080 -httpsPort:13081 -ssl_trustedClientsJKS:trusted.jks -ssl_trustedClientsPwd:<password>

Initialization file: ssl_trustedClientsJKS:trusted.jks

Related topics

System parameters
Enter a parameter in the sm.ini file
SSL parameters
Servlet parameters