EasyManuals Logo

HP NonStop SSL User Manual

HP NonStop SSL
127 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #33 background image
HP NonStop SSL Reference Manual Configuration 33
Startup Line Parameters
HP NonStop SSL configuration parameters can be passed on the startup line as follows (for a complete description of the
RUN SSLOBJ see section "Starting an HP NonStop SSL Process"):
<parameter name> <parameter value>; <parameter name> <parameter value>; ...
The following example demonstrates how to start a multiple HP NonStop SSL proxies sharing the same SSLCONF
configuration file:
> PARAM CONFIG SSLCONF
> RUN SSLOBJ /NAME $STN0, CPU 0, NOWAIT/ TELNETS; SUBNET $ZTC0; PORT 8023
> RUN SSLOBJ /NAME $STN1, CPU 1, NOWAIT/ TELNETS; SUBNET $ZTC1; PORT 8023
> RUN SSLOBJ /NAME $STN2, CPU 2, NOWAIT/ TELNETS; SUBNET $ZTC2; PORT 8023
> RUN SSLOBJ /NAME $STN3, CPU 3, NOWAIT/ TELNETS; SUBNET $ZTC3; PORT 8023
Parameter Reference
This section describes all available HP NonStop SSL parameters in alphabetical order. Note, that parameter names are
case insensitive independently of the source.
Parameter Overview
The following table lists all available HP NonStop SSL parameters and their meanings:
Parameter Meaning
ALLOWCERTERRORS Allows selective overriding of certificate validation errors.
ALLOWIP Limits allowed remote IP addresses.
AUDITASCIIONLY
AUDITASCIIDUMPLENIN
AUDITASCIIDUMPLENOUT
AUDITCONSOLE
AUDITLEVEL
AUDITFILE
AUDITFILERETENTION
AUDITFORMAT
AUDITMAXFILELENGTH
Control the creation of an audit file containing the remote FTP commands in run
mode FTPS or the socket activities in run modes PROXYS, PROXYC,
ODBCMXS.
CACERTS
File names of a DER encoded X.509 CA certificates representing a certificate
chain signing the certificate configured with the CLIENTCERT or SERVCERT
parameter.
CIPHERSUITES
List of cipher suites that will be accepted by a secure HP NonStop SSL process.
If omitted, default openssl cipher suites will be used.
CLIENTAUTH
Enforced client authentication when running as SSL server: a certificate signing
the certificates the client is using for SSL client authentication
CLIENTCERT File name of a DER encoded X.509 client certificate.
CLIENTKEY The private key to be used for the client certificate.
CLIENTKEYPASS Password for reading the (encrypted) private key file.
CONFIG File name of a HP NonStop SSL configuration file.
CONFIG2 Allows the usage of a second configuration file with different security settings.
CONNECTIONINFOFORMAT
Specifies the default format for the output of the SSLCOM command
"connections".
CONNECTIONINFOFORMATDETAILED
Specifies the default format for the output of the SSLCOM command
"connections, detail".
CONTENTFILTER Activates content-filtering in run modes TELNETS, PROXYS and PROXYC.

Table of Contents

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the HP NonStop SSL and is the answer not in the manual?

HP NonStop SSL Specifications

General IconGeneral
BrandHP
ModelNonStop SSL
CategorySoftware
LanguageEnglish

Related product manuals