Sterling Connect:Direct Secure Plus node field definitions
The following fields are used when you are managing Sterling Connect:Direct® Secure Plus nodes.
| Field | Description | Valid Values |
|---|---|---|
| Authentication Timeout | The maximum time, in seconds, that the system
waits to receive Sterling Connect:Direct control
blocks exchanged during the Sterling Connect:Direct Secure Plus authentication
process. If you specify a value of 0, Sterling Connect:Direct waits indefinitely to receive the next message. Specify a time to prevent malicious entry from taking as much time as necessary to attack the authentication process. |
A number equal to or greater than 0, ranging from
0 to 3600. The default is 120 seconds. |
| Certificate Label | A label to identify the certificate being imported. | 1–900 characters |
| Certificate Validation Definition | The name of the CVD defined in Sterling External Authentication Server. | The name of a CVD defined in Sterling External Authentication Server. |
| Cipher Suites | The cipher suites to enable. | Select from list | Default to local node |
| Client Authentication | Turn on client authentication. To enable certificate authentication, select Yes on the .Client record, or select Default to Local Node and enable client authentication on the .Local record. | Yes | No | Default to Local Node |
| Common Name | To perform common name checking, type a common name to check for. To blank out a common name in Sterling Connect:Direct Secure Plus for Microsoft Windows or Sterling Connect:Direct Secure Plus for UNIX, enter NULL in the Common Name field. | |
| Enabled Protocol | The security protocol to use to ensure that data is securely transmitted. | Select from list | Default to local node | None. Values from the Select from list menu include: SSL, TLS, TLS1.1, TLS1.2, and TLS1.3. |
| Encrypt Data | Specifies if the data is to be encrypted. | Yes | No | Default to Local Node |
| Security Mode | Enable security mode (Microsoft Windows and UNIX only). | Default to Local Node | SP800-131A_TRANSITION | SP800-131A_STRICT | SUITE_B-128 | SUITE_B-192 |
| Host Name | Host name for Sterling External Authentication Server. | Valid Sterling External Authentication Server host name |
| Node Name | The node name. | .local= the local node record .client=the client api record .seaserver (or .easerver)=the External Authorization record .password=the strong password record None of these records can be deleted. |
| Override | Enables the ability to override values in the local node record with values in the remote node record. | Yes | No | Default to Local Node |
| Passphrase | The passphrase you specified when you created the certificate. | |
| Port Number | Port where Sterling External Authentication Server is listening. The default is 61366. | Valid Sterling External Authentication Server port number |
| Trusted Cert Label | A label to identify the trusted certificate being imported. | 1–900 characters |
| Type | The current record type. | L=Local record R=Remote record A=Alias This field is not editable. |
| Use External Authentication | Determine if IBM® Sterling External Authentication Server is used for certificate authentication. | Yes | No | Default to Local Node |