Page History

...

ssl-certificate-alias=[empty,string] (default - use first cert in keystore)

ssl-certificate-password=[empty,string]

...

ssl-protocols=space separated list (default "any")

...

ssl-ciphers=space separated list (default "any")

...

ssl-keystore=path

...

ssl-keystore-password=string

...

ssl-truststore=path

SSLssl-truststore-password=string

...

ssl-enabled-components=all 

ssl-keystore=secure/keystore.dat

...

Example: non-secure cluster communications, secure client/server

server: 

ssl-enabled-components=server,locator  NOTE: cluster SSL not enabled

ssl-server-certificate-alias=server

...

ssl-keystore=secure/keystore.dat

...

ssl-truststore-password=changeit

locator: 

ssl-enabled-components=locator         NOTE: cluster SSL not enabled

ssl-locator-certificate-alias=locator

...

ssl-keystore=secure/keystore.dat

...

ssl-truststore-password=changeit

client: 

ssl-enabled-components=server,locator

...

ssl-keystore=secret/keystore.dat

...

The client's trust store must trust both locator and server certificates. 

Since the client did not specify a certificate alias SSL will use the default certificate in its key store.

...