Maintaining client and server authentication key files
IBM® Connect:Direct® client/server security depends on a key, similar to a password, in a IBM Connect:Direct server and an identical key in each API that communicates with that server. The keys are defined and coordinated by the system administrator. You can edit both key files with any text editor installed on your system.
The client key file is called keys.client
on the node on which the API resides.
The server key file is keys.server
on the node on which the server resides. The key
files are located in the directory d_dir/security.
CAUTION:
To mitigate brute force attacks to break the
keys.client
and
keys.server
authentication keys, IBM strongly recommends that customers use
authentication key values with a minimum length of 15 characters.