SSL with DataPower
Secure sockets layer (SSL) communication is used to send commands and receive events between the application server and DataPower appliances. Application servers and DataPower appliance managers behave as the SSL clients. The appliances act as the SSL servers. The SSL connection uses the ibmPKIX trustmanager to do some verification of the appliance. The default SSL configuration used by the appliance manager can optionally be strengthened by customizing the SSL connection. The default configuration does not...
- Do any SSL client validation
- Check certificate chain
- Check the revocation list for the certificate of the DataPower appliance
SSL is used for the events received by the application server and the DataPower appliance manager from each DataPower appliance being managed. In this scenario, the application server and the appliance manager is the SSL server and the appliances are the SSL client.
Any customization made to the SSL connection on the appliance manager must also be accompanied by a complimentary change on each of the managed appliances. The appliance manager uses the DataPowerMgr_sslConfig SSL profile to connect with appliances and send commands. The appliance manager uses the DataPowerMgr_inbound_secure inbound endpoint on the Dmgr to receive events from the appliances it manages.
Related:
DataPower appliance manager Secure communications