An SSL identity is composed of a user's SSL signed certificate and the trusted root of the certificate issuer (or authenticator). Information about an identity is stored in two certificate files: a
keystore containing a private key/signed certificate pair (see
Keystore File), and the
truststore containing the trusted root (see
Truststore File). The SSL identity must be presented whenever:
A request is made to access
Broker Server administrative functions or a
Broker component where an ACL has been configured.
The procedures for creating and managing SSL identities are covered in
Creating Keystores and
Truststores.