Generating a Configuration Report on Connect:Direct Secure Plus for UNIX

If cdcustrpt detects the Connect:Direct® Secure Plus directory in the installation directory, <installation>/ndm/secure+/, it invokes the Connect:Direct Secure Plus Command Line Utility (splicli.sh) to report on Secure+ parameters. If Connect:Direct Secure Plus is detected, you are prompted to enter the path to the Connect:Direct Secure Plus parameters file (the default location is provided in brackets “[ ]”), for example:

Enter full path of Secure+ parmfile
directory: [/sci/users/jbrown1/cd40/ndm/secure+/nodes]:

The following example shows an excerpt from a sample report:


  ===== Begin: Secure+ parameters   =====
  ========================================
  All secure+ nodes in /data/cd4204sp/ndm/secure+/nodes:  
    ************************************************************************************   
    *          Secure+ Command Line Interface                                          *  
    *          IBM(R) Connect:Direct(R) Secure Plus v6.0.0                             *  
    *----------------------------------------------------------------------------------*  
    *   Licensed Materials - Property of IBM                                           *  
    *   (C) Copyright IBM Corp. 1999, 2018 All Rights Reserved.                        *   
    *   US Government Users Restricted Rights - Use, duplication                       *   
    *   or disclosure restricted by GSA ADP Schedule Contract                          *   
    *   with IBM Corp.                                                                 *     
    ************************************************************************************
   
   SPCLI> display all;  
     Name=.Client  
     BaseName=.Client  
     Type=R 
     Protocol=DefaultToLN  
     Override=Y  
     SecurityMode=DefaultToLN 
     AuthTimeout=120  
     KeyCertLabel=  
     ClientAuth=N  
     CertCommonName=  
     CipherSuites=()  


     Name=.Keystore  
     File=/data/cd4204sp/ndm/secure+/certificates/cdkeystore.kdb  


     Name=.Local  
     BaseName=cd4204sp  
     Type=L  
     Protocol=TLS1.2 
     Override=Y  
     SecurityMode=Disable  
     AuthTimeout=120  
     SeaEnable=N 
     SeaCertValDef=  
     KeyCertLabel=MYSHA2562048ID  
     EncryptData=Y 
     ClientAuth=N    
     CipherSuites=(TLS_RSA_WITH_AES_256_GCM_SHA384,
       TLS_RSA_WITH_AES_256_CBC_SHA256,TLS_RSA_WITH_AES_256_CBC_SHA,
       TLS_RSA_WITH_AES_128_GCM_SHA256,TLS_RSA_WITH_AES_128_CBC_SHA256,
       TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_RC4_128_SHA,
       TLS_RSA_WITH_3DES_EDE_CBC_SHA,TLS_RSA_WITH_NULL_SHA256,TLS_RSA_WITH_NULL_SHA)  

     2016/03/11 11:58:07 cdtest