DB2 10.5 for Linux, UNIX, and Windows

ssl_clnt_stash - SSL stash file path for outbound SSL connections at the client configuration parameter

This configuration parameter specifies the fully qualified file path of the stash file to be used for SSL connections at the client-side.

Configuration type
Database manager
Applies to
  • Database server with local and remote clients
  • Client
  • Database server with local clients
  • Partitioned database server with local and remote clients
Parameter type
Configurable
Default [range]
Null [any valid path]

The SSL stash file has extension .sth by default, and stores an encrypted version of the key database password. The password held in the stash file is used to access the SSL key file during an SSL connection request.

On Windows platforms, ssl_clnt_stash is not required if ssl_clnt_keydb is set to the keyword GSK_MS_CERTIFICATE_STORE.

By default the value is null. Depending on your application type, you can specify the client SSL stash file path by the database manager configuration parameter ssl_clnt_stash, the connection string ssl_clnt_stash, or the db2cli.ini keyword ssl_clnt_stash for a SSL connection request. If none of them is specified, the SSL connection fails.

Related reference:
GET DATABASE CONFIGURATION command
RESET DATABASE CONFIGURATION command
UPDATE DATABASE CONFIGURATION command