chainOfTrustEnabled
This property specifies whether to trust a client certificate that has the root certificate, from its trust chain, already trusted in the IBM® Security Guardium® Key Lifecycle Manager server.
- chainOfTrustEnabled={true|false}
- A value of
true
specifies that a client device certificate is trusted when the root certificate from its trust chain is already trusted in the IBM Security Guardium Key Lifecycle Manager server. This property applies to KMIP operations only.- Required
- Optional.
- Values
- true | false
On a new installation of IBM Security Guardium Key Lifecycle Manager, the value is set to
false
. If you want to automatically trust client communication certificates for clients or devices with multiple intermediate signed certificates but a trusted device root certificate, set the property-value pair aschainOfTrustEnabled=true
. - Default
- false
- Example
chainOfTrustEnabled=true