SSL Client Authentication (SSLCAUTH)
This attribute specifies whether the channel needs to receive and authenticate an SSL certificate from an SSL client.
Possible values are:
- OPTIONAL
- If the peer SSL client sends a certificate, the certificate is processed as normal but authentication does not fail if no certificate is sent.
- REQUIRED
- If the SSL client does not send a certificate, authentication fails.
The default value is REQUIRED.
You can specify a value for SSLCAUTH on a non-SSL channel definition, one on which SSLCIPH is missing or blank..
SSLCAUTH is an optional attribute.
This attribute is valid on all channel types that can ever receive a channel initiation flow, except for sender channels.
This attribute is valid for channel types of:
- Server
- Receiver
- Requester
- Server connection
- Cluster receiver
For more information about SSLCAUTH, see DEFINE CHANNEL (MQTT) and Security.