| <!-- |
| |
| Copyright (c) 2005, 2018 Oracle and/or its affiliates. All rights reserved. |
| |
| This program and the accompanying materials are made available under the |
| terms of the Eclipse Public License v. 2.0, which is available at |
| http://www.eclipse.org/legal/epl-2.0. |
| |
| This Source Code may also be made available under the following Secondary |
| Licenses when the conditions for such availability set forth in the |
| Eclipse Public License v. 2.0 are satisfied: GNU General Public License, |
| version 2 with the GNU Classpath Exception, which is available at |
| https://www.gnu.org/software/classpath/license.html. |
| |
| SPDX-License-Identifier: EPL-2.0 OR GPL-2.0 WITH Classpath-exception-2.0 |
| |
| --> |
| |
| <p><a id="ref-protocolssledit" name="ref-protocolssledit"></a><a id="GHWEB00021" name="GHWEB00021"></a></p> |
| |
| <h4><a id="sthref148" name="sthref148"></a><a id="sthref149" name="sthref149"></a>SSL</h4> |
| <a name="BEGIN" id="BEGIN"></a> |
| <p>Use the SSL page to modify SSL settings for a network protocol.</p> |
| <p>The settings on this page are meaningful only if security is enabled on the Edit Protocol page.</p> |
| <p>The SSL page contains the following options.</p> |
| <dl> |
| <dt>Configuration Name</dt> |
| <dd> |
| <p>The name of the configuration to which the settings on this page apply. This field is read only.</p> |
| </dd> |
| <dt>SSL3</dt> |
| <dd> |
| <p>If this checkbox is selected, the SSL3 protocol is enabled for the protocol. This option is enabled by default.</p> |
| </dd> |
| <dt>TLS</dt> |
| <dd> |
| <p>If this checkbox is selected, the TLS protocol is enabled for the protocol. This option is enabled by default.</p> |
| </dd> |
| <dt>Client Authentication</dt> |
| <dd> |
| <p>If this checkbox is selected, clients must identify themselves to the server on every request. This option is disabled by default.</p> |
| </dd> |
| <dt>Certificate Nickname</dt> |
| <dd> |
| <p>The nickname of the server certificate in the certificate database or the PKCS#11 token. In the certificate, the name format is <i>tokenname</i><code>:</code><i>nickname</i>. Including the <i>tokenname</i><code>:</code> part of the name in this attribute is optional.</p> |
| </dd> |
| <dt>Key Store</dt> |
| <dd> |
| <p>The name of the keystore file (for example, <code>keystore.jks</code>).</p> |
| </dd> |
| <dt>Trust Algorithm</dt> |
| <dd> |
| <p>The name of the trust management algorithm (for example, PKIX) to use for certification path validation.</p> |
| </dd> |
| <dt>Max Certificate Length</dt> |
| <dd> |
| <p>The maximum number of non-self-issued intermediate certificates that can exist in a certification path. This field is used only if the Trust Algorithm field is set to PKIX. A value of 0 implies that the path can only contain a single certificate. A value of -1 implies that the path length is unconstrained (there is no maximum). Setting a value less than -1 causes an exception to be thrown.</p> |
| </dd> |
| <dt>Trust Store</dt> |
| <dd> |
| <p>The name of the truststore file (for example, <code>cacerts.jks</code>).</p> |
| </dd> |
| <dt>Cipher Suites</dt> |
| <dd> |
| <p>An area where you can add or remove cipher suites. If you do not add any cipher suites, all cipher suites will be used.</p> |
| </dd> |
| </dl> |
| <a id="sthref150" name="sthref150"></a> |
| <h5>Related Tasks</h5> |
| <ul> |
| <li> |
| <p><a href="task-protocolnew.html">To Create a Protocol</a></p> |
| </li> |
| <li> |
| <p><a href="task-protocoledit.html">To Edit a Protocol</a></p> |
| </li> |
| <li> |
| <p><a href="task-protocolssledit.html">To Edit SSL Settings for a Protocol</a></p> |
| </li> |
| <li> |
| <p><a href="task-protocolhttpedit.html">To Edit HTTP Settings for a Protocol</a></p> |
| </li> |
| <li> |
| <p><a href="task-protocolfilecacheedit.html">To Edit File Cache Settings for a Protocol</a></p> |
| </li> |
| <li> |
| <p><a href="task-protocoldelete.html">To Delete a Protocol</a></p> |
| </li> |
| </ul> |
| <a id="sthref151" name="sthref151"></a> |
| <h5>Related asadmin Commands</h5> |
| <ul> |
| <li> |
| <p><a href="http://www.oracle.com/pls/topic/lookup?ctx=E26576_01&id=GSRFM00051"><code>create-protocol</code>(1)</a></p> |
| </li> |
| <li> |
| <p><a href="http://www.oracle.com/pls/topic/lookup?ctx=E26576_01&id=GSRFM00195"><code>list-protocols</code>(1)</a></p> |
| </li> |
| <li> |
| <p><a href="http://www.oracle.com/pls/topic/lookup?ctx=E26576_01&id=GSRFM00103"><code>delete-protocol</code>(1)</a></p> |
| </li> |
| </ul> |
| |
| |
| <small>Copyright © 2005, 2017, Oracle and/or its affiliates. All rights reserved. <a href="docinfo.html">Legal Notices</a></small> |