PROXY_CERTIFICATES - UDM Manager configuration option

Description

The PROXY_CERTIFICATES option specifies whether or not UDM will use the managers certificate in a three-party transfer session if a certificate is supplied to the UDM Manager.

Proxy certificates are used only for three-party transfer sessions. All components, manager, primary and secondary, must be version 3.2 or later and must be using OpenSSL (System SSL does not support proxy certificates).

If PROXY_CERTIFICATES is set to yes, the UDM Manager's certificate is used to create a proxy certificate for the primary to use when connecting to the secondary. The proxy certificate has the same subject name as the managers certificate, so the certificate ACL for the secondary can be set up to look just like the primary's ACL.

Note

Usage

Method

Syntax

IBM i

UNIX

Windows

z/OS

Command Line, Short Form

n/a





Command Line, Long Form

-proxy_certificates option


(tick)

(tick)

(tick)

Environment Variable

UDMPROXYCERTIFICATES=option

(tick)

(tick)

(tick)


Configuration File Keyword

proxy_certificates option

(tick)

(tick)

(tick)

(tick)

STRUDM Parameter

PROXYCERT (option)

(tick)




Values

option is the specification for whether or not UDM will use proxy certificates.

Valid values for option are:

  • yes
    UDM will use proxy certificates.
  • no
    UDM will not use proxy certificates.

Default is no.