13.2.4. Procedure – Configuring SSL handshake parameters for agents
With the SSL handshake settings (SSL) parameter the certificate verification parameters for the agent and other handshake-related information can be set to be used between the agent and the ZMS.
Select verification level in the field to decide how many levels are verified in the certificate hierarchy.
Values from 0 to 100 are allowed.
Choose or with the radio buttons.
Note It is recommended to use the PKI groups configuration.
In settings select the certificate entity for the agent.
For example: ZMS_engine.
If the window is opened, it displays the unique identifier of the ZMS host and also certificate information, such as version, serial number, issue date and validity period, algorithms and keys.
Tip This information is useful when selecting which certificate to use.
Select engine validator CA group.
For example: ZMS_engine_CA.
If the window is opened, the CA group can be defined which is used to verify the certificate of the agents during the handshake. Data is available on CA group name, certificate name and certificate information for the selected CA groups.
OR
In settings enter manually the following data:
full path of the file where the private key is stored
certificate
CA directory identifying the directory where the CA certificate entities are stored
CRL directory giving the place of the CRLs corresponding to the CA
screenshot
Published on March 04, 2024
© BalaSys IT Ltd.
Send your comments to support@balasys.hu
