Brocade Communications Systems 53-1001778-01 manual Java -classpath SMIAgent/agent/wbem.jar

4 Client configuration to use client certificates for default SSL indications

Mutual authentication for indications:

java -classpath <SMIAgent>/agent/wbem.jar

-Dwbem.indications.keyStore=<SMIAgent>/agent/client/.client.ind.keystore -Dwbem.indications.keyStorePassword=SSLindication -Dwbem.indications.trustStore=<SMIAgent>/agent/client/.client.ind.truststore -Dwbem.indications.trustStorePassword=trustSSLindication

clientprogram

Configuring a client to use client certificates using client listener program (mutual authentication for indications only)

Set the required system properties within the client listener program. For example:

public class clientlistener {

private static final String KS = "indication.keyStore";

private static final String KSPWD = "indications.keyStorePassword"; private static final String TS = "indications.trustStore";

private static final String TSPWD = "indications.trustStorePassword"; System.setProperty(clientlistener.KS) = "<SMIAgent>/agent/client/.client.ind.keystore"; System.setProperty(clientlistener.KSPWD) = "SSLindication"; System.setProperty(clientlistener.TS) = "<SMIAgent>/agent/client/.client.ind.truststore"; System.setProperty(clientlistener.TSPWD) = "trustSSLindication";

}

Client configuration to use client certificates for default SSL indications

When mutual authentication for indications is not enabled, you can configure a client to use default SSL indications. There are three ways to configure a WBEM client to use default SSL indications:

•using a property file

•using system property values when invoking the WBEM client

•using a WBEM client listener program

The procedures are similar to those in “Client configuration to use client certificates” on page 48, the only difference being that you do not include the truststore information.

Note that the certificates installed for mutual authentication for clients and indications are not platform-specific. That is, the certificates installed for Windows, Linux, Solaris, and AIX are the same. Client certificates installed on one platform can be used by the clients running on other platforms.

Configuring a client for default SSL indications using a property file

1.Create a WbemClient.properties file, which contains information for the configuration of the client keystore. Do not include truststore information in the file.

For example, if the SMI-A is installed under D:\smiagent, the contents of the

WbemClient.properties file should be as follows.

wbem.indications.keyStore=D:/smiagent/agent/client/.client.ind.keystore