DAML SSL implementation

When you start the adapter, it loads the available connection protocols. The DAML protocol is the only available protocol that supports SSL authentication. You can specify DAML SSL implementation.

The DAML SSL implementation uses a certificate registry to store private keys and certificates. The certTool key and certificate management tool manages the location of the certificate registry. You do not need to specify the location of the registry when you perform certificate management tasks.

The DAML SSL implementation offers SSL protocol specific configuration options such as disabling specific SSL protocols as described in Changing protocol configuration settings. The DAML SSL also offers the option to specify the cipher suites it allows for SSL communication. The adapters cipher suite is configured in the adapter start script and by default defined as ISIM_ADAPTER_CIPHER_LIST = HIGH.

You can modify the value for the ISIM_ADAPTER_CIPHER_LIST environment variable to meet your organizations requirements. For an overview of all possible options, please consult the OpenSSL website: https://www.openssl.org/docs/man1.0.2/man1/ciphers.html.