To enable and configure SSL settings for the transport:
Field | Description |
---|---|
Peer Name | The Distinguished Name (DN) of the queue manager to be used
by SSL. The queue manager identifies itself using an SSL certificate,
which contains a DN. IBM Rational® Integration Tester can
use this DN to ensure that it is communicating with the correct queue
manager. In MQ, a DN pattern is specified by using the sslPeerName variable of MQEnvironment. Connections succeed only if Peer Name matches the pattern that is specified. |
Cipher Suite | For encrypting the transport communication, select one of the cipher suite from the list or enter the name if it is not listed. For more information, see WebSphere MQ Knowledge Center. |
Fips Required | This option specifies whether the requested cipher suite must use FIPS-certified cryptography in WebSphere MQ. |
KeyResetCount | The total number of non-encrypted bytes that can be sent and
received within an SSL conversation before the secret key is renegotiated.
If left blank or set to zero (default), the secret key is never renegotiated.
This value is ignored if no cipher suite is specified. Valid values
are integers 0 - 999,999,999. Note: KeyResetCount is
not supported in WebSphere MQ 5.3.s
but is supported in WebSphere MQ 6.0
(or later).
|
Trust Store | To enable server authentication, select the server identity store that was configured in the Rational Integration Tester Physical View. |
Key Store | To enable client authentication, select the client identity store that was configured in the Rational Integration Tester Physical View. |
Override default protocols | If you are required to use a specific version of the secure sockets protocol, such as SSLv2 or TLSv1.2, enter that algorithm name here. For a complete list of algorithms, see Standard Algorithm Name Documentation. |