TransportListener.ssl.clientauthentication

This property specifies TLS authentication that is needed for communication between devices and the Guardium Key Lifecycle Manager server.

TransportListener.ssl.clientauthentication={0|1|2}
TLS authentication that is needed for communication between devices and the Guardium Key Lifecycle Manager server.
Required
Optional. Required if the TLS port value is specified.
Values
0 - No client authentication.
1 - Server can do client authentication with the client.
2 - Server must do client authentication with the client.
Default
2
Example
TransportListener.ssl.clientauthentication= 2
Note: If a device communication problem occurs when you are migrating from an older version to IBM Security Guardium Key Lifecycle Manager, Version 4.2.1, for example, DS8000 with IBM Security Guardium Key Lifecycle Manager, complete the following steps:
Import the DS8000 certificate and add it to the IBM Security Guardium Key Lifecycle Manager truststore.
If the problem persists, try changing the TransportListener.ssl.clientauthentication property value to 1.
TransportListener.ssl.clientauthentication= 1