friedkiwi/ibm-information-center
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
master
ibm-information-center/dist/eclipse/plugins/i5OS.ic.rzaha_5.4.0.1/rzahajssesecprops.htm

93 lines
5.4 KiB
HTML
Raw Permalink Blame History

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html lang="en-us" xml:lang="en-us">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="security" content="public" />
<meta name="Robots" content="index,follow" />
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
<meta name="DC.Type" content="concept" />
<meta name="DC.Title" content="JSSE security properties" />
<meta name="abstract" content="A Java virtual machine (JVM) uses many important security properties that you set by editing the Java master security properties file." />
<meta name="description" content="A Java virtual machine (JVM) uses many important security properties that you set by editing the Java master security properties file." />
<meta name="DC.Relation" scheme="URI" content="rzahajsseconfig.htm" />
<meta name="copyright" content="(C) Copyright IBM Corporation 2006" />
<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 2006" />
<meta name="DC.Format" content="XHTML" />
<meta name="DC.Identifier" content="rzahajssesecprops" />
<meta name="DC.Language" content="en-us" />
<!-- All rights reserved. Licensed Materials Property of IBM -->
<!-- US Government Users Restricted Rights -->
<!-- Use, duplication or disclosure restricted by -->
<!-- GSA ADP Schedule Contract with IBM Corp. -->
<link rel="stylesheet" type="text/css" href="./ibmdita.css" />
<link rel="stylesheet" type="text/css" href="./ic.css" />
<title>JSSE security properties</title>
</head>
<body id="rzahajssesecprops"><a name="rzahajssesecprops"><!-- --></a>
<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
<h1 class="topictitle1">JSSE security properties</h1>
<div><p>A Java™ virtual machine (JVM) uses many important security
properties that you set by editing the Java master security properties file.</p>
<p><img src="./delta.gif" alt="Start of change" />This file, named java.security, usually resides in the /QIBM/ProdData/Java400/jdk15/lib/security
directory on your iSeries™ server.<img src="./deltaend.gif" alt="End of change" /></p>
<p>The following list describes several relevant security properties for using
JSSE. Use the descriptions as a guide for editing the java.security file.
</p>
<p><strong>security.provider.&lt;integer&gt;</strong></p>
<blockquote> <p> The JSSE provider that you want to use. Also statically registers
cryptographic provider classes. Specify the different JSSE providers exactly
like the following example:</p>
<pre>
security.provider.5=com.ibm.as400.ibmonly.net.ssl.Provider
security.provider.6=com.ibm.jsse.IBMJSSEProvider
security.provider.7=com.ibm.fips.jsse.IBMJSSEFIPSProvider</pre>
</blockquote>
<p> <strong>ssl.KeyManagerFactory.algorithm</strong></p>
<blockquote> <p>Specifies the default KeyManagerFactory algorithm. For the native iSeries JSSE
provider, use the following:</p>
<pre> ssl.KeyManagerFactory.algorithm=IbmISeriesX509 </pre>
<p> For the pure Java JSSE provider, use the following:</p>
<pre> ssl.KeyManagerFactory.algorithm=IbmX509 </pre>
<p>For
more information, see the javadoc for javax.net.ssl.KeyManagerFactory.</p>
</blockquote>
<p><strong>ssl.TrustManagerFactory.algorithm</strong></p>
<blockquote> <p>Specifies the default TrustManagerFactory algorithm. For the native iSeries JSSE
provider, use the following:</p>
<pre> ssl.TrustManagerFactory.algorithm=IbmISeriesX509 </pre>
<p> For the pure Java JSSE provider, use the following:</p>
<pre> ssl.TrustManagerFactory.algorithm=IbmX509 </pre>
<p>For more information, see the javadoc for javax.net.ssl.TrustManagerFactory.</p>
</blockquote>
<p><strong>ssl.SocketFactory.provider</strong></p>
<blockquote> <p>Specifies the default SSL socket factory. For the native iSeries JSSE
provider, use the following:</p>
<pre> ssl.SocketFactory.provider=com.ibm.as400.ibmonly.net.ssl.SSLSocketFactoryImpl </pre>
<p> For the pure Java JSSE provider, use the following:</p>
<pre> ssl.SocketFactory.provider=com.ibm.jsse.JSSESocketFactory </pre>
<p>For more information, see the javadoc for javax.net.ssl.SSLSocketFactory.</p>
</blockquote>
<p><strong>ssl.ServerSocketFactory.provider</strong></p>
<blockquote> <p>Specifies the default SSL server socket factory. For the native iSeries JSSE
provider, use the following:</p>
<pre> ssl.ServerSocketFactory.provider=com.ibm.as400.ibmonly.net.ssl.SSLServerSocketFactoryImpl </pre>
<p> For the pure Java JSSE provider, use the following: </p>
<pre> ssl.ServerSocketFactory.provider=com.ibm.jsse.JSSEServerSocketFactory</pre>
<p>For more information, see the javadoc for javax.net.ssl.SSLServerSocketFactory.</p>
</blockquote>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="rzahajsseconfig.htm" title="Configure your iSeries server to use IBM JSSE. This topic includes software requirements, how to change JSSE providers, and the necessary security properties and system properties.">Configuring your iSeries server to support JSSE</a></div>
</div>
</div>
</body>
</html>
Reference in New Issue View Git Blame Copy Permalink