Software AG Products 10.11 | Administering Integration Server | Setting Up SSL Session Logging | Overview of the SSL Session Log
 
Overview of the SSL Session Log
SSL session log contains SSL session information in JSON format for inbound connections. It contains information on the cipher suite used, selected protocol version, and client details along with server and session creation details. Using this information, you can analyze the details of a successful SSL handshake.
Integration Server captures the SSL session information for Entrust and JSSE security providers. The following are excerpts from sample SSL session logs for JSSE and Entrust.
2019-07-15 11:21:49 IST {
"provider" : "JSSE",
"loggedInUser" : "Administrator",
"sessionID" : "[93, 44, 20, 115, 150, 122, 228, 76, 181, 94, 62, 91, 207, 251,
222, 105, 91, 14, 208, 203, 34, 115, 100, 112, 123, 71, 130, 212, 150, 225,
7, 137]",
"serverPort" : 12346,
"creationTime" : 1563169907869,
"lastAccessedTime" : 1563169909320,
"selectedCipherSuite" : "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384",
"selectedProtocol" : "TLSv1.2",
"clientIPAddrees" : "127.0.0.1",
"clientPort" : 64782
}
2019-07-15 11:21:34 IST {
"provider" : "Entrust",
"loggedInUser" : "Administrator",
"sessionID" : "5D:FC:C7:77:19:ED:4B:B2:94:9A:DB:4D:51:9B:CD:96",
"serverPort" : 12345,
"creationTime" : 1563169893970,
"lastAccessedTime" : 1563169894006,
"selectedCipherSuite" : "TLS_RSA_WITH_AES_256_CBC_SHA",
"selectedProtocol" : "TLSv1.0",
"clientIPAddrees" : "127.0.0.1",
"clientPort" : 64775
}
Note:
These sample logs are configured to prettyPrint and include timestamps. For more information on configuring prettyPrint and timestamp, see Viewing the SSL Session Log.
The following table describes the fields present in the SSL session log file:
Fields
Description
provider
Identifies the security provider used for the SSL session. Integration Server supports JSSE and Entrust security providers for SSL sessions.
loggedInUser
Specifies the user name of the client who initiated the SSL connection.
sessionID
Specifies the session ID created during the SSL handshake.
serverPort
Specifies the port that received the request.
creationTime
Specifies SSL session creation time.
lastAccessedTime
Specifies the time when the SSL session was last used.
selectedCipherSuite
Specifies the cipher suite used for the SSL handshake.
selectedProtocol
Specifies the protocol version used for the SSL handshake.
clientIPAddrees
Specifies the IP address of the client.
clientPort
Specifies the client port number used for establishing an SSL connection.