Certificate revocation checking is disabled by default in TIBCO ActiveMatrix BusinessWorks™ 5. This article explains how to enable the same.
Revocation checking using CRLs
To enable revocation checking using CRLs, add the following properties to the deployed application .tra file/designer.tra file.
java.property.com.sun.security.enableCRLDP=true java.property.com.tibco.security.CheckRevocation=true java.property.com.tibco.security.NoExplicitCAChain=true
Revocation checking using OCSP
To enable revocation checking using OCSP, add the following properties to the deployed application .tra file/designer.tra file.
java.property.com.sun.security.enableCRLDP=true java.property.com.tibco.security.CheckRevocation=true java.property.com.tibco.security.NoExplicitCAChain=true
In addition, uncomment the following property in the Java security properties file (TIBCO_HOME/tibcojre64/1.8.0/lib/security/java.security or TIBCO_HOME/tibcojre64/11/conf/security/java.security).
ocsp.enable=true
Recommended Comments
There are no comments to display.
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now