Brocade Communications Systems 53-1001778-01 Computer Accessories User Manual


  Open as PDF
of 90
 
50 Brocade SMI Agent User’s Guide
53-1001778-01
Client configuration to use client certificates for default SSL indications
4
Mutual authentication for indications:
java -classpath <SMIAgent>/agent/wbem.jar
-Dwbem.indications.keyStore=<SMIAgent>/agent/client/.client.ind.keystore
-Dwbem.indications.keyStorePassword=SSLindication
-Dwbem.indications.trustStore=<SMIAgent>/agent/client/.client.ind.truststore
-Dwbem.indications.trustStorePassword=trustSSLindication
clientprogram
Configuring a client to use client certificates using client listener
program (mutual authentication for indications only)
Set the required system properties within the client listener program. For example:
public class clientlistener {
private static final String KS = "indication.keyStore";
private static final String KSPWD = "indications.keyStorePassword";
private static final String TS = "indications.trustStore";
private static final String TSPWD = "indications.trustStorePassword";
System.setProperty(clientlistener.KS) =
"<SMIAgent>/agent/client/.client.ind.keystore";
System.setProperty(clientlistener.KSPWD) = "SSLindication";
System.setProperty(clientlistener.TS) =
"<SMIAgent>/agent/client/.client.ind.truststore";
System.setProperty(clientlistener.TSPWD) = "trustSSLindication";
}
Client configuration to use client certificates for default SSL
indications
When mutual authentication for indications is not enabled, you can configure a client to use default
SSL indications. There are three ways to configure a WBEM client to use default SSL indications:
using a property file
using system property values when invoking the WBEM client
using a WBEM client listener program
The procedures are similar to those in “Client configuration to use client certificates” on page 48,
the only difference being that you do not include the truststore information.
Note that the certificates installed for mutual authentication for clients and indications are not
platform-specific. That is, the certificates installed for Windows, Linux, Solaris, and AIX are the
same. Client certificates installed on one platform can be used by the clients running on other
platforms.
Configuring a client for default SSL indications using a property file
1. Create a WbemClient.properties file, which contains information for the configuration of the
client keystore. Do not include truststore information in the file.
For example, if the SMI-A is installed under D:\smiagent, the contents of the
WbemClient.properties file should be as follows.
wbem.indications.keyStore=D:/smiagent/agent/client/.client.ind.keystore
 previous next