DB2 Version 9.7 for Linux, UNIX, and Windows

SSLClientKeystash CLI/ODBC configuration keyword

Specifies the SSL stash file used for File DSN or in a DSN-less connection.

db2cli.ini keyword syntax:
SSLClientKeystash = <fully qualified stash file path>
Default setting:
None.
Usage notes:
This can be set in the [Data Source] section of the db2cli.ini file for the given data source, or in a connection string.

This parameter specifies the fully qualified path of the stash file (.sth), which stores an encrypted password to the key database file. The stash file is used to access the key database file during the SSL handshake. This parameter must be defined if the SSL protocol (security=SSL) is specified.

The SSLCLientKeystash keyword is mutually exclusive with the SSLClientKeystoreDBPassword keyword. If the SSL protocol (security=SSL) is specified, either SSLClientKeystash or SSLClientKeystoreDBPassword must be specified in the connection string, CLI configuration file, db2cli.ini, or in your data server driver configuration file, db2dsdriver.cfg. Otherwise, the connection fail error will be returned.
Note:
  • The ssl_client_keystash keyword is also supported to provide compatibility with earlier version
  • SSLClientKeystash keyword is supported starting from DB2® Version 9.7 Fix Pack 6
Parent topic: CLI/ODBC configuration keywords listing by category
Related tasks:
Configuring Secure Sockets Layer (SSL) support in non-Java DB2 clients
Related reference:
SSLClientKeystash IBM Data Server Driver configuration keyword