Use this page to retrieve a signer certificate from a remote SSL port. The system connects to the specified remote SSL host and port and receives the signer during the handshake using a trust manager. The signer SHA hash displays for validation and, if approved by an administrator, is added to the currently selected trust store.
To view this administrative console page, click Security > SSL certificate and key management > Manage endpoint security configurations > {Inbound | Outbound} > ssl_configuration . Under Related items, click Key stores and certificates > key store > Signer certificates > Retrieve from port.
Specifies the host name to which you connect when attempting to retrieve the signer certificate from the Secure Sockets Layer (SSL) port.
Data type: | Text |
Specifies the SSL port to which you connect when attempting to retrieve the signer certificate.
Data type: | Text |
Specifies the SSL configuration that is used to connect to the previously specified SSL port. This configuration is also the SSL configuration that contains the signer after retrieval. This SSL configuration does not need to have the trusted certificate for the SSL port as it is retrieved during validation and presented here.
Data type: | Text |
Default: | DefaultSSLConfig |
Specifies the certificate alias name that you want to reference the signer in the key store, which is specified in the SSL configuration.
Data type: | Text |
Specifies the signer certificate information if it is retrieved from the remote host and port.
Specifies the certificate serial number that is generated by the issuer of the certificate.
Specifies the distinguished name of the entity to which the certificate was issued.
Specifies the distinguished name of the entity that issued the certificate. This name is the same as the issued-to distinguished name when the signer certificate is self-signed.
Specifies the Secure Hash Algorithm (SHA hash) of the certificate, which can be used to verify the certificate's hash at another location, such as the client side of a connection.
Specifies the expiration date of the retrieved signer certificate for validation purposes.