Manage the External Authentication ServerRecord
This section contains the commands and parameters used to update and display the .SEAServer record.
Update the External Authentication Server Record
The update seaserver command configures properties for Sterling External Authentication Server (SEAS) in the .SEAServer record that is created at installation. The command has the following parameters:
Command | Parameter | Values |
---|---|---|
update seaserver | Protocol=Specifies a comma delimited list of Protocols to use in the .SEAServer record. | Disable | TLS1.2,TLS 1.3 | DefaultToLN TLS1.0, TLS1.1, SSL3.0 are deprecated and should not be used. It is recommended that trading partners using deprecated protocols migrate to TLS 1.3 or TLS 1.2. (See Display Protocols) |
SeaHost=External authentication host name defined in SEAS. | host name | null null—Clears any existing values from the node definition |
|
AuthTimeout=Specifies the maximum time, in seconds, that the system waits to receive the IBM Connect:Direct® control blocks exchanged during the IBM Connect:Direct authentication process. | 0–3600 The default is 120 seconds. |
|
SeaPort=External authentication server port number (listening) defined in SEAS. | port number | 61366 | |
SeaCacheEnable=Enable caching External Authentication Server certificate validation response. | Y|N The default is N. |
|
SeaCacheValidityTime=Time duration during which the local cache entry is valid for certificates. | The default is 24 hours. Range: 1 to 720 hours |
|
SeaGraceValidityTime=Number of hours when the local cache entry of certificate expires and External Authentication Server is unavailable such that Connect:Direct Secure Plus can accept it from its cache. | The default is 0 hours which means cache grace validity time does not
apply. Range: 0 to 720 hours |
Display the External Authentication Server Record
The display SEAServer command displays information about the .SEAServer record.