Parameter: onewayssl4ws

Startup parameters change the behavior of the Service Manager server. You can always set a startup parameter from the server's OS command prompt.

Parameter

onewayssl4ws

Description

This parameter provides the option to use one-way/anonymous SSL for web services clients in a Trusted Sign-On (TSO) or Common Access Card (CAC) configuration. When enabled, this parameter allows web services clients to access SM SOAP interfaces without a certificate.

This parameter is used only for web service integrations, and therefore does not affect the TSO behavior of the Service Manager Windows and web clients. If you can vouchsafe your internal security policies that govern your Web Services clients that are integrated with the Service Manager server, this parameter enables you to deploy SSO/TSO without the need to specify the stringent ssl_reqClientAuth:2. You can start specific servlets by using the onewayssl4ws, ssl_requireClientAuth:0, and debugnode parameters for a web services integration.

By default, this parameter is disabled.

Valid if set from

Server's operating system command prompt

Initialization file (sm.ini)

Requires restart of Service Manager server?

Yes

Default value

0

Possible values

0: Disable one-way/anonymous SSL for web services clients

1: Enable one-way/anonymous SSL for web services clients

Related topics

System parameters
Enter a parameter in the sm.ini file
SSL parameters
Connection parameters
Servlet parameters