SSL technology can be used in several modes. In unauthenticated mode, communication is encrypted/decrypted but users do not have to authenticate or verify their credentials. By default IBM® UrbanCode Deploy uses this mode for its JMS-based server/agent communication. By default, JMS-based communication uses port 7918.
SSL unauthenticated mode can also be used for HTTP communication. You can implement this mode for HTTP during server/agent installation, or activate it afterward. See SSL configuration.
In mutual authentication mode, communications are encrypted as usual, but users are also required to authenticate themselves by providing digital certificates. A digital certificate is a cryptographically signed document that is intended to assure others as to the identity of the certificate owner. IBM UrbanCode Deploy certificates are self-signed.
When mutual authentication mode is active, IBM UrbanCode Deploy uses it for JMS-based server/agent communication. In this mode, the IBM UrbanCode Deploy server provides a digital certificate to each agent, and each agent provides one to the server. This mode can be implemented during server/agent installation, or activated afterward. See SSL configuration for information about activating this mode and exchanging certificates between the server and agents.
Unauthenticated mode for HTTP and mutual authentication mode for JMS are optional; you can implement one without implementing the other, or implement both.