At this point, you should have your three queue managers with an SSL-enabled server connection channel on each, all with their own certificate stores holding a self-signed certificate.
至此,您应该拥有三个队列管理器,每个队列管理器上都具有支持SSL的服务器连接通道,所有的队列管理器都拥有一个自签名证书。
While waiting for an issued certificate, you can create a self-signed digital certificate to test SSL sessions between clients and the server.
在等待证书发布的同时,您可以创建一个自签名的数字证书来测试客户机与服务器之间的SSL会话。
Figure 1 shows the basic process of creating a certificate using a ca and distributing it, in this case, to perform server authentication with SSL.
图1中显示了使用CA创建证书和分发的基本流程,对于本例,用于通过SSL执行服务器身份验证。
However, in order to establish an SSL connection, the server must posses a certificate and corresponding private key.
然而,为了建立SSL连接,服务器必须持有证书和相应的私钥。
If you are not validating the SSL certificate of the server, you don't know who is receiving your REST queries.
如果你不验证服务端的SSL证书,你就无法知道谁在接收你的REST查询请求。
When configuring an SSL endpoint, the admin client can query the server and automatically import the server's signing certificate (with administrative approval, of course).
配置ssl端点时,管理客户机可以查询服务器,并自动导入服务器的签名证书(当然是在得到管理许可后)。
Obtaining a digital certificate for the SSL server (queue manager) and the SSL client (JMS client).
获取SSL服务器(队列管理器)和SSL客户机(JMS客户机)的数字证书。
In many situations, WebSphere Application Server does nothing with the identity in the certificate, which is why the SSL trick we mentioned earlier is so helpful.
在许多情况下,WebSphereApplicationServer对证书中的身份不做任何事情,这就是为什么我们前面提到的SSL欺骗如此有用的原因。
If you want to use default SSL Settings, add the public certificate of WebSphere Application Server to the default trust store as shown in Figure 27.
如果希望使用缺省ssl设置,请将WebSphereApplicationServer的公用证书添加到缺省信任存储区,如图27中所示。
To ensure you are communicating with the correct WebSphere MQ instance, set the SSL peer name value to the DN of the MQ Server certificate, for example.
为确保您使用正确的WebSphereMQ实例进行通信,请将ssl对等方名称值设置为MQServer证书的DN,例如。
Compatible SSL keyrings means that the calling server must have access to the signing certificate that corresponds to the receiving server's certificate as with any SSL communication.
兼容sslKeyring表示调用服务器必须具有对签名证书(与任何SSL通信中的接收服务器的证书对应)的访问权限。
You must configure WebSEAL to use SSL to communicate with WebSphere application server and that SSL configuration must include a client certificate known only to the application server Web container.
您必须配置WebSEAL以使用ssl来与WebSphereApplicationServer进行通信,而且该SSL配置必须包含只对应用服务器We b容器已知的客户端证书。
WebSEAL must be configured to use SSL to communicate with WebSphere application server and that SSL configuration must include a client certificate known only to the application server Web container.
必须把WebSEAL配置为使用ssl与websphereApplicationServer进行通信,而且该SSL配置必须包含只有应用服务器We b容器才知道的客户机证书。
This Certificate belongs to an SSL server site.
此证书属于一个SSL服务器网站。
Why it is required because using SSL handshake server will send its SSL certificate and client will validate this certificate from its trusted list of certificates present in his keystore.
为什么是必需的,因为使用SSL握手服务器将发送其SSL证书,客户端将从其密钥库中存在的可信证书列表中验证此证书。
The client does not need to be provisioned with the server certificate because it obtains it as part of the SSL protocol.
不必使用服务器证书配置客户端,因为服务器证书将作为SSL协议的组成部分被客户端获取。
The client does not need to be provisioned with the server certificate because it obtains it as part of the SSL protocol.
不必使用服务器证书配置客户端,因为服务器证书将作为SSL协议的组成部分被客户端获取。
应用推荐