WebSphere brand IBM WebSphere IP Multimedia Subsystem Connector, Version 6.2

Modifying channel security

Diameter Enabler supports the ciphers supported by the RFC 3588 specification.

About this task
The installation process creates a new SSL configuration object called Diameter that is associated with the TLS channel that is part of the SecureDiameterChain channel chain. As a default, the SSL configuration called Diameter is set up to use the NodeDefaultKeyStore and NodeDefaultTrustStore. You can modify these, but you must import the signer certificate from the Diameter peer into the keystore associated with this configuration. Additionally, you must export the default signer associated with the trust store from the trust store associated with this configuration and import it to the Diameter peer trust keystore. The installation process sets the Client authentication on the SSL configuration to Required. Because it is required by RFC 3588, this should not be modified.
  1. Log in to the Integrated Solutions Console.
  2. Click Security > SSL certificate and key management > SSL configurations.
  3. Click Diameter, the SSL configuration created during the installation process.
  4. Click Quality of protection (QoP) settings.
  5. Select Required in the Client authentication drop-down.
  6. Modify the ciphers as needed.
  7. Click OK to save your changes.



Terms of use
(C) Copyright IBM Corporation 2009. All Rights Reserved.