DB2 10.5 for Linux, UNIX, and Windows

ssl_svr_stash - SSL stash file path for incoming SSL connections at the server configuration parameter

This configuration parameter specifies a fully qualified file path of the stash file to be used for SSL setup at server-side.

Configuration type
Database manager
Applies to
  • Database server with local and remote clients
  • Database server with local clients
  • Partitioned database server with local and remote clients
Parameter type
Configurable
Default [range]
Null [any valid path]

The SSL stash file has extension .sth by default, and stores an encrypted version of the key database password. The password held in the stash file is used to access the SSL key file during the instance startup.

By default, the value is null. During the instance start up, you must define if the DB2COMM registry variable contains SSL. Otherwise, the instance starts up without SSL protocol support.

On Windows platforms, ssl_svr_stash is not required if ssl_svr_keydb is set to the keyword GSK_MS_CERTIFICATE_STORE.

Related reference:
GET DATABASE CONFIGURATION command
RESET DATABASE CONFIGURATION command
UPDATE DATABASE CONFIGURATION command