Maintaining client and server authentication key files

IBM® Connect:Direct® client/server security depends on a key, similar to a password, in a IBM Connect:Direct server and an identical key in each API that communicates with that server. The keys are defined and coordinated by the system administrator. You can edit both key files with any text editor installed on your system.

The client key file is called keys.client on the node on which the API resides. The server key file is keys.server on the node on which the server resides. The key files are located in the directory d_dir/security.

To mitigate brute force attacks to break the keys.client and keys.server authentication keys, IBM strongly recommends that customers use authentication key values with a minimum length of 15 characters.