setCertProtocol

Purpose

Use this command to set the protocol of the certificate. You must specify the password of the certificate. You must issue this command for each SAG where you want to use the new SWIFTNet user.

Required access rights: See Table 4
Predefined roles that provide required access rights: See Table 2
Issue for OU: DNFSYSOU
Issue to service: DNFSAGCFG

Format

Read syntax diagramSkip visual syntax diagramsetCertProtocolsctp -sagsag  -certcertificate_name  -passwordpassword  -protocol StrictRelaxed

Parameters

-sag sag
Name of the SAG.
-cert certificate_name
The name of the certificate. If the certificate is stored on an HSM, this name must be prefixed with HSMx:, where x represents the number of the HSM. For example, if the certificate cert3 is stored on HSM1, specify: 
-cert HSM1:cert3
-password password
The certificate password. You must follow the rules for application passwords of SWIFT certificates, for example, the password must contain 17 to 20 characters and cannot contain part of the file name.
-protocol
Communication protocol. Possible values:
Relaxed
Relaxed mode. In this mode SNL initialization and security are delegated to the SAG. This is the default.
Strict
Strict SNL mode. In this mode SNL initialization and security are performed by the application that provides the password for the certificate.

Examples

The following command, entered on a single line, sets the protocol of the certificate cert1, which is stored directly on SAG1, to relaxed: 
INST1.DNFSYSOU.DNFSAGCFG>scpt -sag SAG1
                              -cert cert1
                              -password k7j6h8g9f1d2s3a4w
                              -protocol Relaxed
The following command, entered on a single line, sets the protocol of the certificate cert3, which is stored on HSM5 for SAG1, to relaxed: 
INST1.DNFSYSOU.DNFSAGCFG>scpt -sag SAG1
                              -cert HSM5:cert3
                              -password zx8cv7bn5hg4fd3s1
                              -protocol Relaxed