...
Blok kódu | ||||
---|---|---|---|---|
| ||||
HKEY_LOCAL_MACHINE\SOFTWARE\Ipesoft\<instalacia>\cfg_<aplikacia>\TLS_Client\TLS_TrustedCerts = c:\<cesta>\server.crt HKEY_LOCAL_MACHINE\SOFTWARE\Ipesoft\<instalacia>\cfg_<aplikacia>\TLS_Client\TLS_RequiredLevel = <level> |
TLS_TrustedCerts: the path to the server certificate. It is also possible to enter multiple certificates separated by a semicolon (;). This is applicable for redundant systems or in a certificate exchange process when both an old and a new server certificate can be configured.
TLS_RequiredLevel: Setting the required security level of the connecting client <level>client <level>:
- None - the client will connect to the kernel if the kernel supports secure communication and even if it does not support secure communication
- TLSNoPeerAuth - the client will only connect to the kernel ensuring secure communication (but the kernel does not need to be verified by a certificate, i.e. its certificate is not compared with the TLS_TrustedCerts list)
- TLSPeerAuth - the client will only connect to the kernel ensuring secure communication and it is verifiable by the certificate
...