WebSphere Application Server Network Deployment, Version 6.0.x     Operating Systems: AIX, HP-UX, Linux, Solaris, Windows

Cryptographic token settings

Use this page to configure cryptographic token settings. A cryptographic token is a hardware or software device with a built-in key store implementation. The cryptographic device is used to manage certificates stored on the cryptographic tokens. These devices are also known as smartcards.

The following types of cryptographic accelerators are supported by WebSphere Application Server:

To view this administrative console page, click Security > SSL > alias_name. Under Additional Properties, click Cryptographic token.

Configuration tab

Token type

Specifies the type of built-in keystore file that is implemented in the cryptographic token, such as PKCS#11.

The WebSphere Application Server uses an implementation of Java Secure Socket Extension (JSSE) to support cryptographic token with Secure Sockets Layer (SSL). Different cryptographic devices are supported. For an SSL server, the following devices are supported:
  • IBM 4758-23
  • nCipher nForce
  • Rainbow Cryptoswift
For an SSL client, the following devices are supported:
  • IBM 4758-23
  • nCipher nForce
  • Rainbow Cryptoswift
  • IBM Security Kit Smartcard
  • GemPlus Smartcards
  • Rainbow iKey 1000/2000 (USB "Smartcard" device)
  • Eracom CSA8000
Follow the documentation that accompanies your device to install your cryptographic token.
Data type: String
Library file

Specifies the dynamic link library (DLL) or shared object that implements the interface to the cryptographic token device.

Data type: String
Password

Specifies the password for the cryptographic token device.

Data type: String
Reference topic    

Terms of Use | Feedback

Last updated: Mar 17, 2005 4:28:29 AM CST
http://publib.boulder.ibm.com/infocenter/ws60help/index.jsp?topic=/com.ibm.websphere.nd.doc/info/ae/ae/usec_cryptohard.html

© Copyright IBM Corporation 2002, 2005. All Rights Reserved.
This information center is powered by Eclipse technology. (http://www.eclipse.org)