Specifies the SSL key database file that is used for certificate authentication.
The SSLClientKeystoredb keyword specifies the fully qualified path of the key database file (.kdb). The key database file stores the signer certificate from the server personal certificate. For a self-signed server personal certificate, the signer certificate is the public key of the personal certificate. For a certificate authority (CA) signed server personal certificate, the signer certificate is the root CA certificate of the CA that signed the personal certificate.
The SSLClientKeystoredb keyword can be set in the [Data Source] section of the db2cli.ini file, or in a connection string.
If the SSL protocol is used, where the security keyword is set to SSL (security=SSL), the SSLClientKeystoredb keyword parameter must be defined. The signer certificate from the server's personal certificate must also exist on the client for authentication to take place.