Use the SSL page to modify SSL settings for a network protocol.
The settings on this page are meaningful only if security is enabled on the Edit Protocol page.
The SSL page contains the following options.
The name of the configuration to which the settings on this page apply. This field is read only.
If this checkbox is selected, the SSL3 protocol is enabled for the protocol. This option is enabled by default.
If this checkbox is selected, the TLS protocol is enabled for the protocol. This option is enabled by default.
If this checkbox is selected, clients must identify themselves to the server on every request. This option is disabled by default.
The nickname of the server certificate in the certificate database or the PKCS#11 token. In the certificate, the name format is tokenname:
nickname. Including the tokenname:
part of the name in this attribute is optional.
The name of the keystore file (for example, keystore.jks
).
The name of the trust management algorithm (for example, PKIX) to use for certification path validation.
The maximum number of non-self-issued intermediate certificates that can exist in a certification path. This field is used only if the Trust Algorithm field is set to PKIX. A value of 0 implies that the path can only contain a single certificate. A value of -1 implies that the path length is unconstrained (there is no maximum). Setting a value less than -1 causes an exception to be thrown.
The name of the truststore file (for example, cacerts.jks
).
An area where you can add or remove cipher suites. If you do not add any cipher suites, all cipher suites will be used.