chainOfTrustEnabled

This property specifies whether to trust a client certificate that has the root certificate, from its trust chain, already trusted in the IBM® Security Guardium® Key Lifecycle Manager server.

chainOfTrustEnabled={true|false}
A value of true specifies that a client device certificate is trusted when the root certificate from its trust chain is already trusted in the IBM Security Guardium Key Lifecycle Manager server. This property applies to KMIP operations only.
Required
Optional.
Values
true | false

On a new installation of IBM Security Guardium Key Lifecycle Manager, the value is set to false. If you want to automatically trust client communication certificates for clients or devices with multiple intermediate signed certificates but a trusted device root certificate, set the property-value pair as chainOfTrustEnabled=true.

Default
false
Example
chainOfTrustEnabled=true